Tip: Capturing Devices to Manage in Intune Using Azure AD Connect
Working with customers who are starting their migration for identity and administration from on-premises to Azure, I see a couple options in the installation and configuration of Azure AD Connect that...
View ArticleAD: Domain controllers – discover what you’ve got
Hey everyone, Theron (aka T-) here, Senior Consultant with Microsoft Consulting Services (MCS) specializing in Active Directory. During an engagement with a customer a couple of years ago, I needed to...
View ArticleClik here to view.
SCOM 2019 Agent Installation Error
While providing support at a customer, I encountered a strange issue with the SCOM agent installations as shown below: Upon investigation the findings were as follows: The usual workaround is to...
View ArticleAKS: Enabling and using preview features such as nodepools using CLI
Most of the time we use the familiar Azure portal to consume Azure Resources. That is all well and good. However sometimes we find that having the Azure CLI to do this is more easier, as once we...
View ArticleTest read rights for user-assigned managed identity on a Linux VM in Azure Gov
I recently came across an issue where a user-assigned managed identity on a VM was not able to read the properties of the resource group where the VM object it was assigned to resided. As our...
View ArticleAD: Nitty Gritty of Fine-Grained Password Policies
Hey everyone, Theron (aka T-) here, Senior Consultant with Microsoft Consulting Services (MCS) specializing in Active Directory. Fine-Grained Password Policies (FGPP) have been around for a while, but...
View ArticleClik here to view.
Field Notes: Azure Active Directory Connect – Domain, OU and Group Filtering
This is a continuation of a series on Azure AD Connect. The recently published blog post covers a quick introduction to the troubleshooting task available in Azure AD Connect. This post goes through...
View ArticleDowngrading Active Directory Domain and Forest Functional Levels (Part 1)
Background With Windows Server 2008/2008 R2 approaching end of support, more organisations are upgrading their Operating Systems to the latest supported versions. Upgrading of Active Directory Domain...
View ArticleClik here to view.
Downgrading Active Directory Domain and Forest Functional Levels (Part 2)
Introduction In part 1 of this series, we established in theory that we can lower the Active Directory functional levels from the latest functional level to Windows Server 2008 R2, or even Windows...
View ArticleClik here to view.
Infrastructure – System Center Configuration Manager –“Deploying applications...
The Issue Recently I was posed a question where a customer wanted their users to experience a more advanced or informative when software gets installed. They also required that data be saved so that...
View ArticleClik here to view.
Convert all targeted devices to Autopilot
In this blog I will look at how to convert an existing corporate device to Autopilot. Configuration Ensure you have an AD/AAD group that contains the existing corporate devices that you would like to...
View ArticleClik here to view.
Field Notes: The case of the disappearing Name Server (NS) records
Introduction I recently assisted a customer with Name Server (NS) records in DNS, disappearing from their DNS zones. All of the Domain Controllers are configured as DNS servers, yet when viewing the...
View ArticleClik here to view.
Downgrading Active Directory Domain and Forest Functional Levels (Part 3)
Introduction In part 2 of the series we’ve successfully lowered the Forest Functional Level (FFL) and Domain Functional Level (DFL) to Windows Server 2008. The demonstration was completed in a forest...
View ArticleClik here to view.
Field Notes: Azure Active Directory – Group Filtering Gotchas
This is a continuation of a series on Azure AD Connect. In the previous blog post, we looked at filtering options that can be used to control which objects are synchronized from on-premises...
View ArticleTest Azure resource name availability
Background Most of the services in Azure such as Storage Accounts, Key Vaults or AppService Websites must have globally unique names, where the fully qualified domain name (aka FQDN) for the service...
View ArticleClik here to view.
Communicate with Confidence – Taking the fear out of public speaking
Your technical skills are honed to a fine-tooth edge. You’re a ninja when it comes to Active Directory, SQL, or Exchange. Server crash? You got this! PowerShell scripting? It’s your superpower!...
View ArticleClik here to view.
Azure – Changing Directories in other Portals like the Device Management Portal
The Issue If you have guest access to multiple directories then switching is fairly easy. You simply click on your username, click switch directory and then choose your directory. Below is a simple...
View ArticleOffline installation of OpenSSH Server on Windows Server 2019
Windows Server 2019 has a lot of additional capabilities that can be added. Those features are easily added with the Add-WindowsCapability PowerShell cmdlet. When adding a capability it pulls from...
View ArticleClik here to view.
Field Notes: Azure Active Directory – Attribute-based Filtering
This is a continuation of a series on Azure AD Connect. I recently covered using domain/OU and group filtering options that are available in Azure AD Connect to help control which objects are...
View ArticleClik here to view.
Hyper-V On-The-Go or “To Boldly Lab Where No-One Has Lab’d Before!”
This is an into to a multi-part series on building portable labs. Boldly Going One thing I have found invaluable throughout my career has been the ability to maintain a decent lab environment,...
View Article