Effective Mail Security applications for Exchange 2019 on-prem
I currently use Symantec Mail Security for Microsoft Exchange on our on-prem Exchange 2019 environment but am looking for a new product. The environment is not connected to the Internet, but on a large stand alone network and I initially wondered if…
Credential Validation Audit Failure -Event ID 4776 - MICROSOFT_AUTHENTICATION_PACKAGE_V1_0 - Error Code: 0xc000006a/0xC0000234
Hello all, thanks for reading and attempting to help, I have been having an ongoing issue for the past month or so with having my account get locked multiple times throughout the day due to error listed in the title. Every time it happens I go check…
Delegate Control Wizard reports
Does the Delegate Control Wizard in AD allow an auditor to view which permissions have already been 'delegated' within AD/a domain? Or is it purely for delegating new permissions? If it does not, how exactly could you determine where such permissions…
Certificate is not valid - Issuer: MS-Organization-Access
Hi, On several Servers, I have certificates where the certificates are listed as: Issued to: 0882ac7e-3ff6-4231-a45b-5a654aa4303f Issued by: MS-Organization-Access SCOM reports these as "Certificate is invalid". Chain Details: ---…
How to implement tiering model in Microsoft Entra
Hello, Microsoft recommends the tiering model for AD that we implemented. is there any tiering model concept that Microsoft recommends for designing Microsoft Entra so we can implement it in new tenant . incase no tiering model recommended the…
SSO to get into Outlook account
I cannot seem to figure out how to do this, or if it's even possible. I am the admin of our Azure. I am trying to set up an SSO into our Outlook accounts. As in, when someone signs into Outlook, they are taken to another screen to authenticate them. I'm…
How to handle a SEC_I_RENEGOTIATE received in TLS 1.3 Negotiation
I have a client application that uses SCHANNEL to negotiate TLS 1.1 and TLS 1.2 which has worked for years. I recently changed to use SCH_CREDENTIALS and it still works for TLS 1.2 (and I presume TLS 1.1) on Windows 10. When run on Windows 11, it…
What is the best security method to secure our data and credentials?
What should be the best security programs or techniques to save my data from cyberattacking and cyber bullying?
TLS 1.3 using SChannel - DecryptMessage Failed with CONTEXT EXPIRED
Team, Do we have example client/server programs in C/C++ for implementing TLS 1.3 using SChannel? DecryptMessage() function first initial call return SEC_I_RENEGOTIATE and when we reinitiate the connection it get expire and connection close. If you…
Auditing NTLMv1
Hi, I have enabled NTLM auditing to discover any use of NTLMv1. As I understand I can look for events under Applications and Services Log\Microsoft\Windows\NTLM I do see the following events but not sure if there is NTLMv1 traffic blocked here. From the…
How do I stop the twice hourly automatic attempts to fraudulently sign into my webmail account
Twice hourly automatic attempts to fraudulently sign into my Hotmail account from random IP addresses across the world. How do you to stop these ? Sooner or later I assume the brute forcing will work. The amount of notifications is annoying as well
Windows CA WebEnrollement certificate problems
We are using a Windows Server 2012 R2 as Windows CA for our Windows 10 environment. Certificates are getting automatically enrolled through GPO which is great, unless you get Mac devices in your environment. To get them the required User and Machine…
Trojan:Win32/Wacatac.B!ml >> Microsoft Safety Scanner found several infected files during scan but end result shows nothing
Windows Defender has detected the Trojan:Win32/Wacatac.B!ml I started the scan with MS Safety Scanner, it took about 24 hours to complete the full scan. During the scan, I can see that it shows about 250 infected files. However, the result, shows that…
NPS condition syntax Client Friendly Name in 2012R2
Newbie here. Trying to find the right syntax for matching the Client Friendly Name attribute in NPS 2012R2 network policy. An example name is RA-CORP-IT-FP01 The conditions I'm trying to figure out matches the starting "RA-" and then…
Exchange March12 CU13 SU5 Security Update - Outlook Search Problems - We cannot get the results from the server.
We started having problems after the CU13 March 12 SU5 update. When I search for mail, the warning "We cannot get the results from the server.." appears. Is there a solution? Exchange 2019 CU13 Office 2021,2019 versions having…
How to change my NetBIOS name in windows server and is it possible to have more characters than 15
How to change my NetBIOS name in windows server and is it possible to have more characters than 15 I m unable to edit itself
The connection either timed out or was lost.
I have problem connect to analysis server through application. Getting below error and we are recently updated .netcore 5.0 to .netcore 7.0 and Data base server is windows 2019 Message: The connection either timed out or was lost. Source:…
Cert-based EAP-TLS Wireless using NPS as RADIUS client, server 2016 not working
I'm about ready to pull my hair out and I've definitely grown a few new grey hairs in the last 72 hours trying to figure this out. Background - Client's corporate Office has APs, their DC/CA/NPS server is up in the cloud (we host it in our…
Problems to connect Terminal Server - RemoteApp after join a 3rd DC
I have troubles connecting to Terminal Server with RemoteApp. There are 2 DC (Win2008R2 STD) and 1 TS-RemoteApp Server (Win2019 STD). Clients Win11 Pro. Domain Functional Level Windows 2008 (not 2008R2) – All has being working great for years so far…. I…
Vulnerabilities CVE-2022-41040 and CVE-2022-41082
Hello Team, We have exchange server 2019 with CU14, we have detected Vulnerabilities CVE-2022-41040 and CVE-2022-41082 in our environment as remediation for this we tried to install SU KB5019758 as this is not compatible with CU14 we are not able to…