Author Archives: Tom Aafloen

About Tom Aafloen

IT Security Advisor @ Onevinn

The consequence of not renewing ATA certificate in time

A customer who uses Microsoft Advanced Threat Analytics (ATA) recently had severe issues with their ATA implementation. At first, the portal started to behave strangely, not showing all information in alerts and some configuration settings were missing. After a restart … Continue reading

Posted in ATA, Certificates, PKI, SSL | Tagged , | Leave a comment

Teams on iOS now supports Sensitivity Labels

In the newly released version 1.0.91 of Teams for iOS it was announced that it now supports Sensitivity Labels for your Teams: (Sorry that the screenshots are in Swedish, you’ll have to trust me or translate it 😀) I first … Continue reading

Posted in Okategoriserade | Leave a comment

Copy your AIP Polices to the Security & Compliance Center

You have for a while been able to copy your AIP Labels to the Security & Compliance Center from the Azure Information Protection Portal. But you can now also copy your AIP Policies (in Preview)! You get a warning that … Continue reading

Posted in AIP, encryption, information protection | Leave a comment

Using PowerShell to get wildcard certificate from Let’s Encrypt

This is a guide that shows you how to get a publicly trusted wildcard certificate at no cost from Let’s Encrypt using PowerShell. Requirements: Windows PowerShell 5.1 .NET Framework 4.7.2 (link to check) Possibility to add CNAME in DNS Step … Continue reading

Posted in Okategoriserade | Leave a comment

Hyper-V Guests with Windows 10 (1903) hangs when using Enhanced Session/RDP?

Are you also having the issue where accessing your Hyper-V VM Guests works great when connecting via Virtual Machine Connection, but the VM hangs when you try to access it using Enhanced Session or RDP? The VM becomes irresponsible and … Continue reading

Posted in Hyper-V, RDP, Windows 10 | Tagged , , | Leave a comment

Enable FIDO2 credential manager in Windows 10

Once you have enrolled your FIDO2 security key in Azure AD (which can be done here), you can easily sign-in to web pages that use Azure AD as Identity Provider without needing to enter your password. If your security key … Continue reading

Posted in fido2, Password, passwordless | Tagged , , | Leave a comment

Always get the English version at docs.microsoft.com

When you visit https://docs.microsoft.com, it shows pages in the local language you have configured in your browser’s settings. Sometimes the pages are properly translated by humans, sometimes it is machine translated. I always want the English versions of the Docs … Continue reading

Posted in Okategoriserade | Leave a comment

Azure Information Protection – Indication that a label encrypts

I’ve been missing an easy way to tell if an AIP label will encrypt information, or if it “only” adds the label metadata and/or visual markings. Sure, I can explain it in the description of the label, but that is … Continue reading

Posted in AIP, CAS, encryption, information protection, Rights Management Services, RMS | Leave a comment

Use PowerShell to see if you are mitigating Meltdown and Spectre

Microsoft has released a PowerShell module on PSGallery that can test if you are mitigating the issues that Meltdown and Spectre are using. Simply run the following command in an elevated PowerShell window: Install-Module SpeculationControl Then use the following command … Continue reading

Posted in Meltdown, PowerShell, Spectre, Updates | Tagged , , , | Leave a comment

Get a free publicly trusted certificate using Let’s Encrypt, PowerShell and DNS

I have previously blogged about the free publicly trusted certificate solution Let’s Encrypt, see here. In this post, I will show how you can request a certificate with a PowerShell script and prove ownership of the domain name using DNS … Continue reading

Posted in CA, Certificates, LetsEncrypt, PKI, SAN, SSL | Tagged , , , , , | Leave a comment