Skip to content
  • Latest Posts
  • Contact
  • Buy Rudy Some Membeer
  • About Rudy

The Men who stare at the AppLocker event log

Posted on: August 13, 2020September 13, 2024Privileged Access Workstation

In this blog, we’ll delve into the curious interplay between AppLocker, MSI installers, Intune, and event logs. We’ll explore how to configure and monitor AppLocker policies, the limitations imposed by […]

Reservoir update logs

Posted on: August 12, 2020September 3, 2020Privileged Access Workstation , Intune , Solarwinds

Making sure your devices are up to date with the latest Microsoft updates is one of the key pillars of hardening your endpoints.  Updating your devices through Intune is a piece of cake. […]

What Happened to Monitoring External Access to Your Office 365 Data?

Posted on: August 7, 2020December 10, 2021Cloud App Security , Azure Ad , Data Governance , Privileged Access Workstation

Some time ago I wrote a blog about securing your data in which I described that this is only the first step in making sure your data is safe.   I will […]

Basic Authentication and the Last Crusade

Posted on: July 29, 2020August 1, 2024Privileged Access Workstation , Azure Ad , Conditional Access , Powershell

In this blog I’ll show you a new option to disable basic authentication protocols. As most of you probably know, Microsoft is going to disable basic authentication for ActiveSync, PowerShell, […]

Sherlock Holmes: A Game of Powershell

Posted on: July 28, 2020July 28, 2020Powershell , Privileged Access Workstation , Solarwinds

My second blog in just one day, but sometimes you get scared as hell! Today at 13:00 AppLocker suddenly began blocking the famous psscriptpolicytest files on all our 2019 Remote […]

No Country For Not Monitoring

Posted on: July 28, 2020December 27, 2021Microsoft 365 Business , Privileged Access Workstation , Solarwinds

SIEM (security information and event management) is a set of tools used to monitor, identify, analyze and record security events. Of course, you could use Azure log analytics and Azure […]

Microsoft and Solarwinds, the holy grail

Posted on: July 24, 2020August 3, 2020Microsoft 365 Business , Privileged Access Workstation , Solarwinds

Solarwinds announced a collaboration with Microsoft to enhance monitoring and management. And since we use Solarwinds as our RMM solution, I think that’s really nice. In this blog, I will […]

The Windows Defender Firewall rises

Posted on: July 22, 2020August 29, 2024Intune , Endpoint Security Series , Privileged Access Workstation , Windows 10
The Windows Defender Firewall rises

This blog is the seventh part of the Endpoint Security Series. In it, I’ll explain how to deploy your Windows Defender firewall baseline policy rules into Intune. 1. Some Background […]

The LAPS and the furious!

Posted on: July 20, 2020December 1, 2024Privileged Access Workstation , Azure Ad

LAPS is a solution that makes sure you have unique administrator passwords on each device which will be changed automatically after a certain time period has passed. It makes sure […]

Along came MCAS/MDCA Automation

Posted on: July 16, 2020December 5, 2021Cloud App Security , Powershell , Privileged Access Workstation

This blog will show you, how you could import your Microsoft Cloud App security/ Microsoft Defender for Cloud Apps template (MCAS/MDCA). You could import this template with all your pre-configured […]

Posts pagination

Previous page Page 1 … Page 3 Page 4 Page 5 Page 6 Next page

Categories

  • MMP-C
  • Attestation and Compliance Series
  • EPM
  • Declared Configuration Enrollment
  • Autopilot
  • WinDC
  • Intune
  • Continue to Sign in Prompt Part 2: Disable the DMA SSO Compliance
  • The “Continue to Sign in Prompt” That breaks the SSO
  • Declarative Device Management with Intune
  • Why Using a DEM Account for Windows Autopilot is a Bad Idea
  • Device Query for Multiple Devices, Device Inventory, and Single Device Query: Connecting the Dots
Theme Alaska Blog by Kantipur Themes