Author Archives: Tom Aafloen

About Tom Aafloen

IT Security Advisor @ Onevinn

Copy your AIP Polices to the Security & Compliance Center

You have for a while been able to copy your AIP Labels to the Security & Compliance Center from the Azure Information Protection Portal. But you can now also copy your AIP Policies (in Preview)! You get a warning that … Continue reading

Posted in AIP, encryption, information protection | Leave a comment

Using PowerShell to get wildcard certificate from Let’s Encrypt

This is a guide that shows you how to get a publicly trusted wildcard certificate at no cost from Let’s Encrypt using PowerShell. Requirements: Windows PowerShell 5.1 .NET Framework 4.7.2 (link to check) Possibility to add CNAME in DNS Step … Continue reading

Posted in Okategoriserade | Leave a comment

Hyper-V Guests with Windows 10 (1903) hangs when using Enhanced Session/RDP?

Are you also having the issue where accessing your Hyper-V VM Guests works great when connecting via Virtual Machine Connection, but the VM hangs when you try to access it using Enhanced Session or RDP? The VM becomes irresponsible and … Continue reading

Posted in Hyper-V, RDP, Windows 10 | Tagged , , | Leave a comment

Enable FIDO2 credential manager in Windows 10

Once you have enrolled your FIDO2 security key in Azure AD (which can be done here), you can easily sign-in to web pages that use Azure AD as Identity Provider without needing to enter your password. If your security key … Continue reading

Posted in fido2, Password, passwordless | Tagged , , | Leave a comment

Always get the English version at docs.microsoft.com

When you visit https://docs.microsoft.com, it shows pages in the local language you have configured in your browser’s settings. Sometimes the pages are properly translated by humans, sometimes it is machine translated. I always want the English versions of the Docs … Continue reading

Posted in Okategoriserade | Leave a comment

Azure Information Protection – Indication that a label encrypts

I’ve been missing an easy way to tell if an AIP label will encrypt information, or if it “only” adds the label metadata and/or visual markings. Sure, I can explain it in the description of the label, but that is … Continue reading

Posted in AIP, CAS, encryption, information protection, Rights Management Services, RMS | Leave a comment

Use PowerShell to see if you are mitigating Meltdown and Spectre

Microsoft has released a PowerShell module on PSGallery that can test if you are mitigating the issues that Meltdown and Spectre are using. Simply run the following command in an elevated PowerShell window: Install-Module SpeculationControl Then use the following command … Continue reading

Posted in Meltdown, PowerShell, Spectre, Updates | Tagged , , , | Leave a comment

Get a free publicly trusted certificate using Let’s Encrypt, PowerShell and DNS

I have previously blogged about the free publicly trusted certificate solution Let’s Encrypt, see here. In this post, I will show how you can request a certificate with a PowerShell script and prove ownership of the domain name using DNS … Continue reading

Posted in CA, Certificates, LetsEncrypt, PKI, SAN, SSL | Tagged , , , , , | Leave a comment

Force update of Advanced Threat Analytics (ATA) on Windows Server 2016

When there is an update available for ATA you will get a blue arrow notification in the portal. Hovering with the mouse pointer over the icon will show what’s new in the available update: The update notification tells you to … Continue reading

Posted in ATA, Updates | Tagged , , , | Leave a comment

Certificate related problems when using a web proxy server

I have several times encountered these issues, so it decided it was time to write a blog post about it. The situation You are using a proxy server for web communication. Direct communication to the Internet is blocked. The proxy … Continue reading

Posted in CA, Certificates, CRL, NDES, PKI, SCEP | Tagged , , , | Leave a comment