Duo Authentication for Windows Logon and RDP is great tool that I like to use to add MFA to Windows systems specifically servers, as it could help prevent lateral movement in the network. When you only have a few systems running Duo Authentication for Windows Logon and RDP upgrading it is short and painless. When…
Recently I’ve ran into an issue with Microsoft Teams where the user sees a blocking message that says “Teams needs an update”. The user needs to action it before they can use Microsoft Teams again. Typically the user can just click on Update Teams which will take them to a download page for Microsoft Teams,…
I needed to get geoSCOUT working in VMware Horizon but geoLOGIC doesn’t officially support publishing geoSCOUT to systems like Citrix, RD Web, and Horizon. Due to the way that geoSCOUT works you can’t just launch the geoSCOUT exe and have it work. On the first launch a user would normally run the geoSCOUT Desktop_Build_NonAdmin_v8.exe installer…
It finally happened, I actually needed to make a script to write scripts. There’s been a few times where I needed to write multiple scripts that are basically the same minus a few variables and in the past I’ve just done this manually. An example of this is a BitDefender Gravity Zone install script, I…
Something that has annoyed me with VMware when compared to Hyper-V is the fact that Hyper-V lets you paste into the VM console. By default VMware has that disabled but you can manually enable it. Doing that is kind of slow so I wrote a script with PowerCLI to enable copy paste on a VM.
With the release of geoSCOUT version 8.17 geoLOGIC upgraded the geoSCOUT launcher but only included an upgrade file that needs to be ran as admin on each system and under each user account. Which is annoying in company setups where users don’t have local admin. Technically speaking geoSCOUT still works even if you don’t run…
If you’ve installed Windows Admin Center (WAC) on a domain joined server and you connect to another domain joined system you’ll see a message similar to this. Having to login multiple times is annoying so here’s how to make the Single Sign On work with WAC using Kerberos constrained delegation.
My firewall recently blocked Microsoft Azure AD Connect which caused issues with syncing to 365. Turns out the issue was that my IPS (Intrusion Prevention System) flagged it as being “suspected RST injection”. Normally when something like this happens it’s typically the IPS being overly sensitive and I usually can whitelist the specific detection however…
There have been a lot of critical exploits over the last few months. Really the best way to deal with that is Windows Updates. Now I can hear you complaining that Windows Updates left untamed will just reboot your servers randomly or I don’t want to build WSUS or my RMM doesn’t patch well and…
Auto Windows updates are annoying especially when left untamed as it will automatically reboot the device be it a workstation or a server. I’ve written a script that can mass disable Windows updates across all devices even if they aren’t domain joined. Technically you could go in and disabled the Windows Update service but that…
