Archive

Archive for the ‘PowerShell’ Category

Microsoft news in June 2019

June 20, 2019 Leave a comment

So far June has been busy month for Microsoft. Few of the recent announcements I want you to know about:

Microsoft Azure Bastion – private and fully managed RDP and SSH access to virtual machines (blog)

AaronLocker performance and feature updates (blog)

Microsoft Hyper-V Server 2019 available for download (ISO)

Sysinternals updates
    – Sysmon v10.01 – adds support for DNS query logging
    – Autoruns for Windows v13.95 – adds support for user Shell folders redirections

Windows To Go (WTG) – Feature Deprecation in Windows 10 1903

PowerShell v7.0.0-preview.1 Release

Azure Multi-Factor Authentication Server goes Cloud-Only – As of July 1, 2019, Microsoft will no longer offer MFA Server for new deployments.

Microsoft Edge Insider Channels receives update on Canary channel – brings preview for Windows 7, Windows 8, Windows 8.1 and macOS (*)

– SCCM Client extension for Windows Admin Center (more info) (*)

Windows Insider Lab Kit (Olympia v2) updated to version 5.7 (*)

Windows and Office Deployment Lab Kit updated to version 1903 (*)

* added after initial blog post

Categories: AppLocker, Azure, Download, Hyper-V, Microsoft, PowerShell, Sysinternals, Windows Tags: , , , , ,

NTK 2019 and other Microsoft-related news

May 26, 2019 Leave a comment

From 21. until 23. of May 2019, Portorož (Slovenia) became my home for few days. The reason for this was NTK (NT konferenca) – Microsoft’s IT conference that brought together people from all over the place.

During the three days conference was going on, I had a privilege to present three sessions of my own. As always, I was pleasantly surprised by the number of people who came to my sessions, even though the session was in the middle of the lunch time or the last one for the day. Thank you all for showing up and asking questions.

My sessions at NTK 2019 were:

Presentations and demo files can be downloaded from NTK web site or from my OneDrive:

For all the demos on day one and day two I used Start-Demo.ps1 PowerShell script. Thank you Jeffrey Snover and Joel “Jaykul” Bennett for the original script.

During one of my presentations there was one Windows Sandbox related question – data sharing between Host and Sandbox. At the time I wasn’t aware of Windows Sandbox – Config Files which I believe is exactly where the question was going. There is MappedFolders parameter, that gives us an option to map local drive into Sandbox on user’s Desktop. Mapped folder can be Read-Only or Read&Write. Example of Windows Sandbox Config file with few additional options: WindowsSandbox.wsb

While we were busy with NTK, Microsoft rolled out few new products, services and announcements:

Categories: Microsoft, NTK, PowerShell, Presentations, SCCM, Security, Windows, Windows 10, WSUS Tags: , , , , , , ,

System Center 2019 is here

March 15, 2019 Leave a comment

For all of us that started playing with Windows Server 2019 at the end of last year, we also wanted to start playing with System Center 2019 ASAP. That day has come – Microsoft just started releasing System Center 2019 products.

On Microsoft Download Center you can find System Center 2019 Evaluation VHDs:

and

Downloads for the installers are also available on Microsoft Evaluation Center.

If you have MSDN subscription or if you are active MCT, you can also download all the DVDs for System Center 2019 Products at https://my.visualstudio.com.

If you have access to Volume Licensing Service Center (VLSC), you can find new System Center 2019 product DVDs available for download at https://www.microsoft.com/Licensing/servicecenter/.

For those of you that just want to check out System Center 2019 products, downloading pre-build environment is a good option – fast and easy way to test the product without deploying it into your environment. Here you can find short PowerShell script that will help you automate the download part of this endeavor (Download SC2019 GA VHD Eval.ps1).

I’ve also put together PowerShell script that can download all System Center 2019 evaluation EXEs from Microsoft Evaluation Center: Download SC2019 GA Eval.ps1.

If you ponder about System Center 2019 products and can’t really put your finger on why you might want them, you can check this blog for short overview ( Windows Server Blog  – Now available: Microsoft System Center 2019!).

One big news that came with System Center 2019 is that Microsoft will no longer release SAC (Semi-Annual Channel) versions of System Center products. They decided to go back to the “old” model of “LTSC” (Long-Term Servicing Channel) that provides five years of mainstream support and five years of extended support (with Update Rollups providing the incremental fixes and updates).

System Center Configuration Manager (SCCM) is not impacted by the 2019 release change and will continue current branch release cadence of three times per year as noted in the documentation, “Support for Configuration Manager current branch versions”.

Categories: Download, GitHub, Microsoft, PowerShell, System Center Tags: , , ,

AaronLocker – automate AppLocker configuration

February 25, 2019 Leave a comment

AppLocker is application whitelisting security feature that became available in Windows 7 and Windows Server 2008 R2. With Windows 10 and Windows Server 2016 Microsoft decided to rebrand it to Windows Defender Application Control or WDAC for short. Other than rebranding it, AppLocker didn’t receive any major improvements. In most of the management tools you will still find it under AppLocker name.

If you want to learn more about it, I would recommend you to check out official documentation.

If you or your company is using Windows Enterprise or Education client operating system, then you should look at setting up AppLocker. The implementation itself doesn’t take much time but it can drastically improve overall security of Windows environment. In Windows 10 and Windows Server 2016 AppLocker represents one part of multi-layer defense strategy.

To ease the implementation, Aaron Margosis put together set of PowerShell scripts including detailed documentation called AaronLocker. What AaronLocker helps you do is automate most of the tasks needed to implement and maintain AppLocker.

Few of the nice to have features are:

– Selective scan of any folder and subfolders with rule merge
– Additional rules for domain-joined PCs
– Find user writable paths and set exclusions
– Exclude sensitive build-in Windows programs, that are rarely used by non-admins
– Policy report in Excel
– Audit and Enforce policy
– Audit/Enforce summary reporting from AppLocker Logs in Event Viewer
– Reporting supports forwarded events with Event Forwarding (How-to in the documentation)
– Detailed documentation including how to implement Pilot / Broad / Production phases

You can learn more about AaronLocker from the documentation available on the GitHub portal. If you prefer or like video content, you can also check two YouTube videos, first one introducing the solution and second one quick start.

Categories: AppLocker, GPO, Microsoft, PowerShell, Security, Server 2016, Windows, Windows 10, Windows 7, Windows 8.1 Tags: , , ,

PowerShell on Linux

August 18, 2016 Leave a comment

PowerShell just went open source and is already available on few Linux distros as well as Mac OS X.

For those interested, you can check out alpha builds, source code and learning materials available on GitHub at PowerShell.

Not a Linux or Mac fan but I do like the idea.

Check out all the first-hand details in Jeffrey Snover’s recent blog:
PowerShell is open sourced and is available on Linux (video).

I guess now it’s high time to start learning and using GIT.

Categories: GIT, Microsoft, PowerShell, Uncategorized Tags: , ,