Tag: Guides

Enabling Microsoft “Cloud enabled LAPS” (Local Admin Password Solution)

Posted on by Geir Dybbugt

LAPS – Local Admin Password Solution, has for a long time been one of those great tools to have in the toolbox when it comes to securing your devices from lateral movement from a potential attacker. And Microsoft LAPS have been around for quite some time already.

This tool was orginally available for deployment to server/desktop devices connected to a traditional domain (on-prem) setup.

This changed as of April 2023, and Microsoft have now introduced Microsoft LAPS (Preview) with support for configuration with Intune, and saving the passwords to Azure AD, giving us – once again – a native LAPS solution to handle the local admin account.

problem

Solving terrible performance in application using folders with high filecount

Posted on by Geir Dybbugt

Recently I was troubleshooting terrible application Performance for a windows application.
This application is using files and directories located on a file server.
The file server OS was Windows server 2016 and the clients are Windows Server 2019 Citrix terminal servers.

The application uses seperate client folders containing files pr client, with alot of files inside the various folders – some more than others.
In this specific there were tens of thousands of files in some client folders.
Performance on the application was intermittently slow, and it could take upto 15 minutes to switch between one client and another inside the application Read on to get the solution

How to configure screensaver settings on non-enterprise editions of Windows with Intune

Posted on by Geir Dybbugt

his is another post to deal with one of thelimitations of the various licensing editions of Windows.
To be specific, there are certain features that are only available if you have an Enterprise or Education edition of Windows.
This post beeing around the limitation of controlling the settings around enforcing and controlling the screen saver on devices via intune.
As always, every problem has a solution, or a viable workaround.

problem

Solved: Error opening files from SharePoint / OneDrive

Posted on by Geir Dybbugt

Have been seeing some users getting the following errors when trying to open files from OneDrive for Business.

It doesn’t happen on all files, but for some, no specific event causing the behavior. .
If the user takes a copy of the file giving the error, then opening the copy, works as expected

Holding back the upgrade to Windows 11 with Intune

Posted on by Geir Dybbugt

With Windows 11 pushing its way towards your environment’s devices, you may find the need to hold back this upgrade to some or maybe all your devices, for any reason. Holding back the upgrade can be done via Intune for easy deployment to your devices. Script can be found in the post.

problem

Solved: Visma Lønn, random errors when showing “print” previews

Posted on by Geir Dybbugt

This is just a quick post for an issue with Visma’s “Visma Lønn” application, that it may be nice to be aware of.
In Norway there are a few companies using “Visma Lønn” for payslips etc.
Some users may experience issues when doing some of the processes in the application, especially reports that involve the “Crystal reports” component.
When generating the reports, and when expecting the preview to show inside the application window, the user may get some “random” error messages.

Read on for the cause and workaround

pointing

Manageability – Part 1: Naming Conventions

Posted on by Geir Dybbugt

When it comes to managing anything within IT, it will always be a good thing to keep things organized, in one way or another. You should also make sure that the way you organize things, is made understandable for others as well (maybe you share the responsibility of management with a group, or may do so in the future).
Make it a habit to creating an organizational model that others can jump in or out of over time, that is logical and understandable by others than yourself. Document the logic/model that is defined, and make sure not to deviate from the actual definition as time goes by.

Intune: Setting custom wallpaper and lockscreen on Windows 10 devices with PowerShell and Azure Storage Blobs

Posted on by Geir Dybbugt

Many organizations want to deploy custom branded wallpapers and lockscreens on corporate managed devices. Doing this with Microsoft Intune is natively limited to Windows 10 Enterprise and Education. Follow this guide to see how you can do this with Intune and PowerShell toghether with Azure Storage Blobs.

Guide: How to setup a network level ad and tracking blocker with a Raspberry Pi.

Posted on by Geir Dybbugt

This setup is great if you’re tired of ads when surfing the web, and don’t want to rely on browser plugins for ad blocking.
By using a – raspberry pi – in this example, you can get a network wide blocker to deal with this.
(Can also be set up on any computer if you have one laying around, but the guide here is for the Pi).

The result of this is less ads, less tracking, and also a faster web browsing experience since your pulling/sending less data to your screen.
Since it’s network wide, all devices, xbox, tablets and phones also reap the benefits with no work needed on the device itself. […]

Changing your DNS provider to increase web speed and privacy

Posted on by Geir Dybbugt

If you are not familiar with what DNS is, it basically the postal system of the internet.
Everything on the internet or local network consists of IP addresses – this is hard for people to relate to, and therefore we have DNS.
DNS translates the name-based addresses we use, that are easier to remember, to IP addresses – and vice versa – making sure you land on the wanted destination.

[…]

%d bloggers like this:
Explore Yubico