Edge automatic sign-in issues using RCG
・Operation and Procedure Login to Windows 11 client terminal with fingerprint using WHfB RDP connection to RD session host using RCG *RD session host is Windows Server 2022. *That server is already a hyblid AD join. Edge startup in the session…
Windows passwords salting
Dear Team, I would like to know whether the windows passwords are slated or not and how windows machines (client or server) stores the passwords in the database and where it is stored (work group computers and domain joined computers). Regards, Mowlee
![](https://techprofile.blob.core.windows.net/images/GoKvvNP6g0-uZRwMZXa2Ew.png?8DB67E)
Password change request on next logon isn't request on M365 login, just on-premise AD accounts despite sync
Hello folks, I shortly resume my scenario: I am running a Windows Server 2022 Domain Controller on-premise I deployed Microsoft Entra Connect on this Win Server 2022 DC to sync on-premise AD accounts with Microsoft 365 accounts, enabling password…
NTLM authentication failures
Hi, I need your help to understand the NTLM authentication level again. I am quite confused with NTLM authentication levels. I have Server-A configured to 'Send NTLMv2 response only\refuse LM & NTLM', and DomainController-A configured to 'Send NTLMv2…
how to find restore point creation in system protection tab in win serverv2016
I Cant able to find system protection tab in windows server 2016 OS just need to create a restore point
Sync Issues with Edge Using Remote Credential Guard (RCG) in Windows Hello for Business Environment
I signed in to a Windows 11 device using WHfB and connected to an RDSH via RDP. When I use RDP with an ID and password, Edge signs in automatically. However, when using RCG with WHfB, Edge does not sign in automatically. The RDSH is Win10 and Hybrid…
Antivirus Migration from McAfee to Defender for Server
Hi All, I am currently working on a plan to migrate my antivirus for my servers from mcAfee to Microsoft defender for Server. I would like to know if there is a recommended plan on how to go about this? is there a url where I can have an estimate…
EnableCertPaddingCheck
Hello, The WinVerifyTrust Signature Validation CVE-2013-3900 Mitigation (EnableCertPaddingCheck) recently started appearing on my Windows 10 machines. I've read that the solution is to add the following to the registry …
Ingestion of Security Events
Good afternoon, Was not sure if anyone else has seen this before. We have a few clients that are getting abnormal ingestion of security events coming from the DC. Event ID 4661 in this case. We don't want to disable the event as it is important but we do…
Best Practices for Securing services in the Azure ecosystem : Tools for Access Logging and Monitoring?
Good morning, Our organization utilises Azure for hosting web services, SQL Server instances, and SQL Server on virtual machines to re-design our current data warehouse structure. Ensuring robust data security protection across these environments is…
Need Solution to Terrapin Vulnerability CVE-2023-48795 in Windows OpenSSH implementation
We are using the Microsoft Provided OpenSSH Server implementation on a Windows Server 2022 instance and this vulnerability remains open even though there appears to be patches available to correct the issue. Is Microsoft planning on releasing a patch or…
Azure Custom Based Policy Migration Tool
Need to Migrate Azure Custom Based Policy from one subscription to another subscription. any migration tool available. Kindly Advice
![](https://techprofile.blob.core.windows.net/images/v5-AjQBABgAAAAAAAAAAAA.png?8DC369)
Enabling Windows Firewall logging only without enabling the profiles?
I'm looking for information on the ports and protocols that the Windows server currently uses as a baseline before enabling the Windows Firewall profiles. I aim to enable the built-in firewall on each of my Production Windows Servers without causing a…
![](https://techprofile.blob.core.windows.net/images/WsWYoGdWukeBW66msAr6qQ.png?8D8128)
![](https://techprofile.blob.core.windows.net/images/mmZjVX7E9E2norR_QCwc-w.png?8DC8CC)
AzureMFA Extension NPS Login failed with VPN
Hello everybody, i hope someone can help us. We want to implement RADIUS Service to our VPN Connection. Users must login with Azure MFA in the future. I have install the NPS Service and configure it. The connection is correct to our Fortinet Firewall. I…
![](https://techprofile.blob.core.windows.net/images/Nd_pi7-IHkuDC3BVgl0RFQ.png?8D81F2)
Banner user logon
Hello I need that when a user logs in to the computer, a banner with the date of the last login will appear. I have to take this configuration to Azure AD. How can I do it? Thanks
CVE-2013-3900 WinVerifyTrust Signature Validation Vulnerability
Hi All https://msrc.microsoft.com/update-guide/vulnerability/CVE-2013-3900 To remediate the vulnerability CVE-2013-3900 is to add the below registry values. [HKEY_LOCAL_MACHINE\Software\Microsoft\Cryptography\Wintrust\Config] …
How to log or audit for any weak cyphers, encryption, or hashes in use?
How can I activate or run an audit on my Windows Server 2016, 2019, and 2022 Application, Web, and Database servers to verify if any weak cyphers, encryption, or hashes are in use? I'm about to apply the following enforcement using the Group Policy…
![](https://techprofile.blob.core.windows.net/images/WsWYoGdWukeBW66msAr6qQ.png?8D8128)
![](https://techprofile.blob.core.windows.net/images/WsWYoGdWukeBW66msAr6qQ.png?8D8128)
How to browse and delete files under C:\System Volume Information\DFSR\Private directory ?
How to force delete the below file from my DFS replication staging area? C:\System Volume…
![](https://techprofile.blob.core.windows.net/images/WsWYoGdWukeBW66msAr6qQ.png?8D8128)
![](https://techprofile.blob.core.windows.net/images/WsWYoGdWukeBW66msAr6qQ.png?8D8128)
someone hacked my localhost using my stolen identity and won't let me access 127.0.0.1
someone hacked my localhost using my stolen identity and won't let me access 127.0.0.1. What can i do?
Unchecked 'Allow Unlisted File Name Extensions' and Adding required extensions cause site failure
Hello Here, I have to set up security feature in IIS to only allow certain extensions to work. Therefore, I unchecked "Allow unlisted file name extensions" in the Request Filtering settings. I, then, added all the files extensions that are…