For security reasons, it makes sense to replace the recovery password used to unlock an encrypted drive each time with a new one. This new password will be automatically stored in Active Directory with the appropriate BitLocker configuration. However, the old keys remain in the AD and can be deleted ..read more

In a previous post, I shared a bash script that enables you to effortlessly create an Amazon Machine Image (AMI) from an EC2 instance in AWS. The bash script introduced in today's post allows you deregister an AMI and delete all associated snapshots in AWS ..read more

When organizations implement a lockout policy, it is common for users to lock themselves out and require assistance from the helpdesk. In such cases, helpdesk personnel without administrator rights require permission to unlock user accounts. This can be achieved through delegation ..read more

If you are virtualizing critical workloads, you want to ensure they do not fail if a host goes offline. All common platforms offer the capability to operate VMs in a high-availability cluster. Proxmox allows you to install a cluster even in the free version ..read more

Proxmox Virtual Environment (VE) 8.2 includes new functionalities such as an automated installation tool for more straightforward setup on bare-metal servers, a migration wizard for VMware ESXi virtual machines, and a switch to an nftables-based firewall for enhanced security. It also introduces LXC device passthrough for containerized workloads and advanced backup settings to optimize resource utilization during backups. These updates are part of a broader release that updates core technologies and system components ..read more

Microsoft will retire the Role-Based Access Control (RBAC) application impersonation role in Exchange Online in May 2024. Applications widely use this role in Exchange Online as it enables them to impersonate users in the tenant to perform actions on behalf of the users. You must migrate all your applications from using this role to other options. This article will explore Microsoft's reasoning behind this move and the current alternatives ..read more

The instructions in this post outline how to execute arbitrary code with administrator privileges on the Windows logon screen before the user signs in ..read more

In a previous post, I covered Podman Desktop, an alternative to Docker Desktop. Today, I will look into Podman 5.0, the latest iteration of Red Hat's free open-source container engine. The new release brings significant enhancements, including revamped container engine code for Windows and macOS, native Apple Hypervisor support, and streamlined image building for Podman farms. Let's explore the new Podman 5.0 features and improvements ..read more

The remediation of CVE-2023-24932, discovered in May 2023, is taking longer than Microsoft's initial timeline. This flaw allows attackers to bypass Secure Boot and disable security features like BitLocker. The April 2024 update introduces a new fix that admins should thoroughly test because it has significant ramifications and will be automatically activated in October ..read more

Azure App Service Automatic Scaling is a new feature that intelligently manages the number of instances of a web application. It analyzes real-time HTTP traffic and scales out (adds instances) or scales in (removes instances) to match demand. The most significant advantage of Automatic Scaling is that it simplifies web application management, offering a less complex approach than services like Azure Virtual Machine Scale Sets (VMSS) or Azure Kubernetes Service (AKS), which often require detailed rule definitions ..read more