In the last blog post, we enabled FIDO2 security key logins with Windows 10 on our AADJ Windows machines, but users are still able to login with username/password. What if we want to enforce a FIDO2 Security Key or Windows Hello for Business login?
As companies like Yubico announce the next generation of YubiKeys with biometrics, let’s take a look at what is actually possible today with Azure AD Joined Windows 10 devices. Microsoft pushes us closer and closer to passwordless login options, but without a domain and GPOs available, some of our clients are left wanting. In this series of blog posts, I am going to walk through the setup of a FIDO2 device in Azure AD and Windows 10, and later apply Intune policies to alter login options.
Apparently, I was enjoying my birthday too much to notice that Microsoft released the New Office Visio Stencils. This stencil contains more than 300 icons to help you create visual representations of Microsoft Office or Microsoft Office 365 deployments including Microsoft Exchange Server 2013, Microsoft Lync Server 2013, and Microsoft SharePoint Server 2013. Continue Reading
If there is one thing I learned early in my career, it is “metrics can show you anything you want them to show”. One metric companies often use to measure the availability or uptime of their systems is “number of 9s”. Computer system uptime is often measured by the percentage of uptime/availability in a year. […]
When managing Exchange 2007, the recipient scope for Exchange Management Shell (EMS) and Exchange Management Console (EMC) defaults to the domain where the Exchange servers are located. Recipient scope refers to the specified portion of the Active Directory directory service hierarchy that the Exchange Management Console and the Exchange Management Shell uses for recipient management. When […]
Recently, the time on all of my domain computers was out of sync. Each computer in my domain had the same time, but it was about 10 minutes slow. Domain computers get their time from your domain controller(s), so I looked into syncing the time of my DC with an internet time server. The steps […]
While running some reports on Exchange backup success I could not figure out why when I ran get-mailboxdatabase | fl Name,LastFullBackup it would return a blank LastFull Backup. In Exchange Management console I could look at the properties of the database and see the Last full backup and the Last incrementation backup times. After […]
Occassionally, I need to test the connection my Exchange server is making to Active Directory. I always forget the syntax of this command, so I am putting it in my blog. Continue Reading
Recently, I’ve gone through an exercise to rebuild the Exchange 2007 environment at my new company. The original Exchange 2007 design was not what I would call optimal, so we decided to just rebuild instead of fix all of the problems. Luckily, most of the users were still on Exchange 2003, so this made the […]
Sending email through telnet can be a useful tool when testing mail functionality, testing for open relays, or sending mail from admin scripts. This is something I don’t use often enough, so I’ve created this blog as a reminder. Continue Reading