Content
Microsoft Security Alert
A laptop gets a message saying it is locked, that the IP address has been used without knowledge or consent to visit with ID theft possible. It says to call Microsoft Security at 1-888-339-0179 and NOT to close or restart the computer. Is this a phishing…


Pin Policy for Smart Card Login in Windows 10
Is it possible for to set a pin policy for smart card login? We are using PIV cards (OpenFIPS201) in a Windows 10 A/D. The PIV standard specifies 6-8 digits, however we would like to enforce 8-digit PIN values via policy if possible. I have reviewed…


Recover datas from encrypted TPM Bitlocker
Dears, I have 2 questions. This are the arguments: 1- I have a notebook and I want to use Bitlocker to encrypt the C: disk (TPM is present) When I enable the Bitlocker feature, it does not encrypt all the disk but it is istantaneously Encrypted (via…
Scripts for deploying Windows 10 v22H2 security baseline
Want to find scripts for deploying Windows 10 v22H2 security baseline. Thank you


Resend notification for defender
Hello, I'm setting up incinerator notifications, risk analytics, and Endpoint recommendation. Let's say I set up an alert. Can I initialize notification for existing events. I want to send test messages, and then after testing, perform alerts on existing…


MDE Attack Surface Reduction rules question
Hi, started to investigate audit events from MDE ASR. Get some events regarding the rule Block Office applications from injecting code into other processes. Now, I executed the following query in AH: DeviceEvents | where ActionType ==…


Which are the possible values for "IsClickedThrough"?
Which are the possible results for "IsClickedThrough" in "UrlClickEvents" table and their meaning? Thanks!


Windows Hello for Business - Cloud Kerberos trust deployment - All users cannot access on-prem resources
https://learn.microsoft.com/en-us/windows/security/identity-protection/hello-for-business/hello-hybrid-cloud-kerberos-trust I have followed the guide step-by-step to ensure that my identities can use a WHFB pin to access local resources between file…


How to manually download KB4052623 for installation on Windows 2016 Server
I am working on a pilot to move our Windows servers to MS Defender. Our Windows Servers are behind on Windows Updates by few months. We do a project to remediate this issue underway. As part of onboarding a Windows 2016 server to MS Defender, you…


Microsoft Wireless Display Adapter only works if I disable firewall
Hi, The latest Microsoft Wireless Display Adapter 4K will only connect successfully to my laptop (Dell Latitude) if I disable the Windows Firewall. I've ensured the necessary rules have been enabled in all the firewall profiles. (Pub/Priv/Dom) …


Application Guard is not detected in M365 Defender for Endpoint
Defender Security Recommendations still keeps telling me to enable App Guard in Managed Mode and this recommendation is not solved with ASR settings below.


registry full in windows 11
Good morning; The question I have is that I currently have several PCs with Windows 11 and in less than a week it is giving me a registry full error. I enter as administrator, I reconfigure so that it overwrites the records and I delete the stored ones.…


Allow Administrator account lockout Missing from GPMC
KB5020282 makes a new Account Lockout Policy setting available, "Allow Administrator account lockout". Even though this new setting is visible through the group policy editor, it does not show up when viewing the policy settings from GPMC. In…


How do I update my role to Student?
I just enrolled into a college. How do I update my role Student, and merge with my private account role?


i have 30 malwares
I have about 30 malwares on my pc and I don't know how to get rid of them.


Why won't bitlocker automatically unlock for USB sticks?
The first thing I want to note is that bitlocker was automatically unlocking on my PC. The thing that changed was when I reinstalled Win 10 after playing around too much with the registry (oops!). Somehow in my BIOS the TPM was shutoff before the OS was…


My account is blocked and can't verify
My other account was blocked because my phone was stolen and I couldn't remember the password, I then logged into another device and accessed the account linked to it. It then said recover account I filled out the questions but it said my answers weren't…


FIPS for windows 11?
I need to use FIPS for logging in to my work. will windows 11 support this? the only guidance I can find is for windows 10. How do I move from windows 11 to windows 10?


Issues updating Windows Defender (KB2267602 will not install)
The organization above me has rolled out the requirement for Microsoft Defender Endpoint to be used on our systems. They provided a configuration package which, from what they and I can tell, worked perfectly - all our devices report into their MDE…
password invalid credential manager
Hi, I need to save same secrets from keyvault to the credential manager to use sftp with UNC. So , I get the creds using powershell and I created a credential object. However, when I try to access to the UNC, it prompt the windows security and asks for…