Configure LAPS with Intune and EntraID

Overview Windows Local Administrator Password Solution (Windows LAPS) is a Windows feature that automatically manages and backs up the password of a local administrator account on your Microsoft Entra joined or Windows Server Active Directory-joined devices. You also can use Windows LAPS to automatically manage and back up the Directory Services Restore Mode (DSRM) account password on your Windows Server Active Directory domain controllers. An authorized administrator can retrieve the DSRM password and use it....

February 1, 2024 · 4 min · by Chisqi

SMB over QUIC

Overview SMB over QUIC introduces an alternative to the TCP network transport, providing secure, reliable connectivity to edge file servers over untrusted networks like the Internet. QUIC is an IETF-standardized protocol with many benefits when compared with TCP: All packets are always encrypted and handshake is authenticated with TLS 1.3 Parallel streams of reliable and unreliable application data Exchanges application data in the first round trip (0-RTT) Improved congestion control and loss recovery Survives a change in the clients IP address or port SMB over QUIC offers an “SMB VPN” for telecommuters, mobile device users, and high security organizations....

December 12, 2023 · 5 min · by Chisqi

Install Azure AD Connect

Overview Azure AD Connect (formerly known as Azure AD Sync or DirSync) is an tool designed to synchronize on-premises Active Directory with Azure Active Directory (Azure AD). Requirement Microsoft Azure / Entra ID tenant and account. Verified domain. Azure AD connect must be installed on domain joined server running on Windows 2016 and later. Windows Server 2016, Windows Server 2019, Windows Server 2022 user winver to check the current version....

August 12, 2023 · 2 min · by Chisqi

Deploy and manage Azure IaaS Active Directory domain controllers in Azure

Overview The process of deploying an Active Directory domain controller on an Azure VM is similar to the process of deploying a domain controller in an on-premises environment. One primary difference is that when you deploy a domain controller in Azure, you must place the Active Directory database on the data disk of an Azure VM to avoid potential database corruption. Database corruption might occur because of the read and write cache settings of the operating system disk on the Azure VM....

June 6, 2023 · 14 min · by Chisqi

Microsoft EntraID

Introduction Microsoft Entra ID is part of the platform as a service (PaaS) offering and operates as a Microsoft-managed directory service in the cloud. It’s not a part of the core infrastructure that customers own and manage, nor is it an IaaS offering. While this implies that you have less control over its implementation, it also means that you don’t have to dedicate resources to its deployment or maintenance. With Microsoft Entra ID, you also have access to a set of features that are not natively available in AD DS, such as support for multifactor authentication, identity protection, and self-service password reset....

May 23, 2023 · 24 min · by Chisqi

Upgrading Linux VM on Azure

Overview Here is the step to upgrade Steps to upgrade linux VM on Azure. Create a backup of your server or vm (take a snapshot). Upgrade all installed packages of Ubuntu version sudo apt update && sudo apt upgrade Reboot the Ubuntu Linux system sudo reboot Install the Ubuntu update tool sudo apt install update-manager-core Reboot the box sudo reboot Start the upgrade procedure sudo do-release-upgrade Verify upgrades lsb_release -a

February 16, 2023 · 1 min · by Chisqi