Content
Risk of disabling VBS
Hi, We are using VBS (Credential Guard and HVCI) on all our new servers, that are running on VMware. Its a really cool feature, but we are limited by the fact, that we cant hot-add memory on our SQL servers. Hot-add memory and CPU will not operate for…


Migrate Enterprise CA fallback
I read some documents if the migration gets the error, I want to fallback to the original CA server, Just delete the original CA computer object in AD, it is easy to join the computer back to AD if fallback and the original CA can recover the service…


How to fix the error"Please Update Windows Defender Antivirus to the latest version KB4052623"while installing 2016 installation half of the 2016 servers.?
How can the issue "Please update Windows Defender antivirus to the newest version KB4052623" during the installation of half of the 2016 servers be fixed? On half of the 2016 servers, we ran across this problem, and we attempted to fix it by…


Certutil -SetCAtemplates
is this obsoleted? i read some document saying this, but i cannot find this parameter


What is the best security method to secure our data and credentials?
What should be the best security programs or techniques to save my data from cyberattacking and cyber bullying?


Difference between Microsoft Endpoint Protection and Microsoft Defender Antivirus
Hello, We're getting security intelligence updates for both subjected products but wanted understand more about each of them. Could you please help checking if my understanding is correct and share your view if its wrong? Microsoft Endpoint Protection…


Command Prompt
I'm not able to open run as administrator in my windows 11, i tried may times in different different ways. Buy still i am not able to run as administrator. What to do....?????


What is the default LmCompatibilityLevel for Windows Server 2012, 2016 and 2019?
What is the default LmCompatibilityLevel applied to Windows Server 2012, 2016 and 2019 if it is not explicitly set in the registry at…


security log event ID 5157 5152 4656 failures?
Hi All, My server details windows 2019 STD and it is workgroup not in domain. I am seeing the following event ID in the security log after enabling auditing via gpedit. Is this ignorable? Looks like last two are blocked by windows firewall, which…


Classic ASP very slow when Windows Defender is turned on
And here we are again... 2023 and Microsoft is still neglecting to fix this issue. On 2019, September the 27th, I wrote: Hi everyone. I've noticed that when Windows Defender is turned on my Classic ASP applications get very very very slow. Something…


Unable to implment ACL on Azure File Share because of non-routable domain (.local)
I have a domain controller that has non routable domain like example.local, I have added an alternative UPN Suffix that is example.com. Synchronized the AD using Azure AD Connect and have domain joined the Azure File Share. After implementation I am…


Upgrade pki from SHA1 to SHA256
Hi, We are looking to upgrade our enterprise PKI from SHA 1 to SHA 256. Can you help us how to proceed ?


WinVerifyTrust Signature Validation CVE-2013-3900 Mitigation (EnableCertPaddingCheck)
I have added the following registry keys as suggested to remediate this vulnerability but the vulnerability has not been resolved, is there any addition configurations that are required in order to clean my scan report. …


PKI - Renewed CA cert and it changed CA hierarchy, I need to revert without invalidating my issues certs
I was simply trying to renew the CRL's of a level 2 Sub-CA (Server A), and instead I renewed the CA certificate on the level 2 Sub-CA (Server A) and selected the parent as the other level 2 Sub CA (Server B). So now Server A is a level 3 Sub-CA. Now it…


Security Log not showing every event log
My organization has a Windows server 2012r2. Last few days we have observed that some accounts are getting locked for unknown due reasons. After 5 minutes it's unlocked again according to domain policy. My concern is as follows: When I look into Event…


When will security updates for Edge 109 for Windows Server 2012 be released?
Dears, Nessus finds vulnerabilities for Edge version 109 but I don't see any fixes in the update catalog. What are the plans for an update?


Deploy EAP-TEAP using group policy
Has anyone successfully deployed Wi-Fi settings to client PCs using group policy. Trying to push EAP-TEAP, however, I was able to find only a couple of suggestions and both failed!, please see them both here:(xml and using 2022 server GPO): …


Prevent domain users from seeing each others files in same folder
Hello. We are asking all staff to complete a survey by editing a Word doc with Xs in the appropriate box (on a scale of 1 to 5 how do you feel about the following etc.) The survey is anonymous and I was asked if it would be possible for staff to save…


How to do a network backup with windows server 2022?
I have a network with two computers and a windows server 22. Since there isn't the role of windows server essentials experience anymore I don't know how to schedule a backup of all the computers from the server using only roles and features. Is there any…


Error installed AD CS using "RSA#Microsoft Enhanced RSA and AES Cryptographic Storage Provider"
Hello If I installed AD CS as follows (on Windows 2019 Server Core) Install-AdcsCertificationAuthority –CAType EnterpriseSubordinateCA –CACommonName "Core-CA-02" ` –KeyLength 2048 –HashAlgorithmName SHA256 ` –CryptoProviderName …

