PXE vulnerabilities published in new research, datacenters affectedPXE vulnerabilities published in new research, datacenters affected

AdminRefAdminRef 0 Comment

From globally redundant datacenters to SMB server rooms, if it’s using PXE booting with IPv6 enabled, the admins probably have emergency patching to do. PixieFail Quarkslab published a blog post on PixeFail, a set of 9 vulnerabilities in a popular firmware component. Think “Windows is a popular user OS” levels of popular applied to firmware […]

Read MoreRead More

Break Glass Accounts – Uses & ConsiderationsBreak Glass Accounts – Uses & Considerations

AdminRefAdminRef 0 Comment

All administrators are required to use MFA (multifactor authentication) in order to access a service, but the system or service for authentication using MFA is suffering an outage. In a similar configuration, the authentication service is available, but no MFA devices are available (cell provider change impacted SMS, a device is lost/stolen/suddenly misconfigured by mistake, […]

Read MoreRead More

Useful Links & RecommendationsUseful Links & Recommendations

AdminRefAdminRef 0 Comment

Last updated 2024-09-02 Nothing on this page is sponsored. All links to books will be to the Kindle versions where possible simply for speed of accessibility and my personal preference. Links Microsoft Azure Portal https://portal.azure.com/#home Intune Portal https://endpoint.microsoft.com/#home Microsoft 365 Admin Center https://admin.microsoft.com/Adminportal/Home#/homepage Email & DNS MX Toolbox https://mxtoolbox.com/EmailHeaders.aspx ICANN https://lookup.icann.org/en Email Checker – check […]

Read MoreRead More

Windows Hello for Business with Microsoft Intune and CMMC/NISTWindows Hello for Business with Microsoft Intune and CMMC/NIST

AdminRefAdminRef 0 Comment

This post covers implementing Windows Hello for Business in an environment managed by Azure Active Directory and Microsoft Intune such that CMMC/NIST requirements are satisfied. According to Microsoft in a blog post from February 12, 2021, Windows Hello for Business (WHfB) with certain configurations has all the capabilities to satisfy the multifactor authentication requirement of […]

Read MoreRead More

Fix RDP sessions freezing or black screen at logonFix RDP sessions freezing or black screen at logon

AdminRefAdminRef 0 Comment

Several causes for this issue exist, most famously the Windows 10 version 1809 & Windows 11 version 22H2 feature updates. Fix 1 This disables use of UDP on the client, forcing a TCP connection. In the client’s registry, go toHKEY_LOCAL_MACHINESOFTWAREPoliciesMicrosoftWindows NTTerminal ServicesClient Create a new DWORD value named fClientDisableUDP with data of 1 Reboot the […]

Read MoreRead More

Change a network category in WindowsChange a network category in Windows

AdminRefAdminRef 0 Comment

A network category can be important for several things, but usually for Windows firewall rules. To get the current network and its category, run the following in PowerShell:  Get-NetConnectionProfile  To change the location category, run this in an elevated PowerShell session using the network name returned from Get-NetConnectionProfile:  Set-NetConnectionProfile -Name <network name> -NetworkCategory [Public | […]

Read MoreRead More

Export & import printers in Windows using printbrm.exeExport & import printers in Windows using printbrm.exe

AdminRefAdminRef 0 Comment

Printers and their associated ports and drivers can be imported and exported using the Windows native tool printbrm.exe. It’s not included in the PATH environment variable and therefore must be run with explicit reference to its path. While it’s typically used for print servers, it can also be used on workstations. Important Printbrm.exe does not […]

Read MoreRead More