Direct Acces – Troubleshooting client with PowerShell

Get-DAClientExperienceConfiguration Ensuring that the DirectAccess Client Settings group policy has been applied to the client is one of the first steps in troubleshooting failed DirectAccess connections. While it is possible to use gpresult to do this, using the Get-DAClientExperienceConfiguration PowerShell command is much simpler. If DirectAccess client settings have been applied, the output of the command willContinue reading “Direct Acces – Troubleshooting client with PowerShell”

How to update group membership without logoff / logon /restart

This might be very useful for certain situations where you want to update a user’s or computer’s group membership without the need to re-logon / restart. The whole magic is behind the issued kerberos tickets after you logged on to a machine or a machine has been started. The tool “klist.exe” cannot only be usedContinue reading “How to update group membership without logoff / logon /restart”

AD CS (PKI) Network Device Enrollment (NDES/SCEP)

NDES is the Microsoft Implementation of SCEP: NDES installation and operations:   (NDES) Frequently Asked Questions (FAQ):   Configuring Network Device Enrollment Service for Windows Server 2008 with Custom Certificates:   NDES enrollment process: 1) Generate a key pair and install it on your device by using procedures provided byContinue reading “AD CS (PKI) Network Device Enrollment (NDES/SCEP)”

DNS – how to use DIG utility ?

Collection of Web resources about dig usage: Download dig (part of Bind): Some commands: What is the website’s IP address ? dig +short How to identify the name servers associated with a domain ? dig NS +short What does the delegation path to my zone look like ? dig +trace WhichContinue reading “DNS – how to use DIG utility ?”

AD – Troubleshooting replications 2/2

How to Troubleshoot Active Directory Replication Issues In the previous article: we explained all the methodology to troubleshoot AD replication: This second article will deep dive with the most well known and out of the box AD utility called REPADMIN.exe This utility recommended to run as Domain Administrator or Enterprise Administrator. repadmin /replsummary /bydestContinue reading “AD – Troubleshooting replications 2/2”

Office 365 – difference between AIP and Security and Compliance Sensitivity labels

Good articles to explain the differences and how to merge the S&C Sensitivity labels and AIP labels,   MS technet: S&C labels: AIP labels:    

Azure Cloud shell

Overview: URL: On first launch Cloud Shell prompts to create a resource group, storage account, and Azure Files share on your behalf. This is a one-time step and will be automatically attached for all sessions. A single file share can be mapped and will be used by both Bash and PowerShell in CloudContinue reading “Azure Cloud shell”

Azure DevOps

Azure DevOps Services provides development collaboration tools including high-performance pipelines, free private Git repositories, configurable Kanban boards, and extensive automated and continuous testing capabilities. For the on-premises platform, Azure DevOps Server (previously named Visual Studio Team Foundation Server), see Azure DevOps Server Documentation. Main portal: Azure devOps and AzureAD groups (security of O365groups): reading “Azure DevOps”