An overview of Hysolate Free for Sensitive Access, which provides a secure environment for accessing sensitive data and services.

The post Hysolate Free for Sensitive Access: Run sensitive activities in an isolated workspace first appeared on 4sysops.

You can easily expand virtual drives using the integrated tools of Hyper-V or VMware. However, if Windows 10 or 11 is running in a VM, you will find that the system partition cannot be extended because the recovery partition is in the way. You can conveniently move it to the end of the disk with GParted.

The post Move Windows recovery partition using GParted first appeared on 4sysops.

Amazon WorkSpaces provides hosted virtual desktops in the AWS cloud that enable users to be more productive by combining applications, compute, and persistent storage in a flexible platform that can be accessed anywhere from any device. Using Amazon WorkSpaces can help you reduce costs, increase security, and simplify the management of your desktop environment while supporting an increasingly mobile workforce. This step-by-step guide explains how to deploy Amazon WorkSpaces.

The post Install Amazon WorkSpaces: Virtual Linux or Windows desktop in AWS first appeared on 4sysops.

Security baselines are groups of preconfigured Windows settings that are recommended by Microsoft. Compliance policies configure rules and settings that users and devices must meet. Microsoft 365 Intune provides the tools to enforce compliance and security policies on end user devices.

The post Manage security baselines and compliance policies using Intune first appeared on 4sysops.

In this post, we'll list some of the most common disaster recovery strategies for small environments for VMware vCenter Server Appliance (VCSA). With small environments, admins usually run only one single sign-on domain, so there is no case where the vCenter Server is linked to another vCenter Server. While it is simpler for any backup solution, it is also a single point of failure. That's why it is important to have some kind of disaster recovery for VCSA.

The post Disaster recovery strategies for vCenter Server appliance VM first appeared on 4sysops.

When we need to monitor Azure activities, we use Azure Activity Logs. These logs are automatically created in Azure and cannot be deleted, as they are needed for auditing and diagnostic purposes. We can configure some of these logs to be sent to designated places, such as a Log Analytics workspace, where platform logs can be consolidated into a single location for easy management. In this post, we will focus on retrieving Azure Activity Logs using PowerShell and Kusto queries against Log Analytics workspaces.

The post Manage Activity Logs in Azure using PowerShell first appeared on 4sysops.

The new Microsoft 365 Defender portal includes some email-related reports that have been moved from the old Security Center. In this article, you will learn about the reports available in the new and the old portal. This will help you manage your tenant in an organized manner.

The post Mail flow reports in the Microsoft 365 Defender portal first appeared on 4sysops.

Managing end user device security settings is an integral part of an organization's overall cybersecurity. Microsoft 365 Intune provides technical tools to block end users from installing unwanted USB devices on their PCs.

The post Block the installation of USB devices on Windows PCs using Intune first appeared on 4sysops.

Microsoft has implemented the security concept Secured Core in Windows Server 2022 and Azure Stack HCI. It is intended not only to protect the boot process but also to thwart attacks on vital system components. Some features, such as HVCI or DMA protection, must be explicitly activated first.

The post Configure Secured Core in Windows Server 2022: HVCI, DMA protection, System Guard, and VBS first appeared on 4sysops.

Infrastructure as code aims to make resource deployment more predictable. Instead of writing complicated scripts, you write out what the resource should look like and then have a tool figure out how to deploy it. For Azure, the infrastructure-as-code solution has been the Azure Resource Manager or ARM templates written in the JSON syntax. Microsoft recently released a new configuration called Azure Bicep, which makes the configuration writing process more manageable. In this article, you'll learn about the Bicep syntax, authoring a Bicep template, and deploying Azure resources using Azure PowerShell and Azure CLI.

The post Azure Bicep: Getting started guide first appeared on 4sysops.

Passwork password manager is a simple yet robust password management solution for the enterprise.

The post Passwork: An easy-to use password manager for the enterprise first appeared on 4sysops.

My PowerShell function Compress-Vhdx allows you to compress multiple VHDX files with a single command to reclaim space from a folder (and its nested subfolders). The function uses the Optimize-VHD PowerShell cmdlet, which comes with the Hyper-V role. You no longer need to provide the full syntax separately for each VHD. When the operation is complete, you get a nice summary of the amount of space saved for each separate VHDX.

The post Compress-Vhdx: Compress multiple VHDX files using the PowerShell cmdlet Optimize-VHD first appeared on 4sysops.

Migrating on-premises Exchange to Microsoft Office 365 can be filled with challenges. CodeTwo Office 365 Migration helps to automate the Office 365 migration process.

The post CodeTwo Office 365 Migration: Move on-premises Exchange to Microsoft 365 first appeared on 4sysops.

With the release of Office 2021, Microsoft updated the administrative templates for GPOs. However, the new release does not get its own ADMX but instead shares it with its predecessors. Therefore, existing GPOs also apply in the event of an update. Compared to Office 2019, ADMX 10 offers new settings.

The post ADMX templates for Office 2021: compatible with 2016 GPOs and 10 new settings first appeared on 4sysops.

VMware has released a new version of Tanzu called Tanzu Community Edition. This version is a free download that you can install and use on several Windows, Linux, and macOS machines.

The post Install the free new VMware Tanzu Community Edition first appeared on 4sysops.

At the Ignite conference, Microsoft presented the next GA release of the Windows Admin Center (WAC). It now supports all current versions of Windows, as well as Azure Stack HCI 21H2. New features include a multi-resource dashboard, the option to create VHDX, and an automatic logout.

The post Windows Admin Center 2110: Multi-resource dashboard, VHD tool, and support for Azure Stack HCI 21H2 first appeared on 4sysops.

CU22 and CU11 for Exchange 2016 and 2019 install the new Emergency Mitigation (EM) function. It is intended to implement immediate measures automatically when critical vulnerabilities occur. These can reduce the threat but can also deactivate Exchange features.

The post Exchange 2016/2019: Install and configure Emergency Mitigation Service first appeared on 4sysops.

Most businesses today use a telephone system for voice communication. Historically, phone systems have been complicated, challenging to configure, and not very scalable. However, the cloud revolution has redefined how businesses take advantage of business-critical services and the available options. The 3CX communications system is an open-platform phone system that runs on-premises with Windows or Linux and in the cloud as a hosted SaaS solution.

The post 3CX communications system: Phone system for Windows, Linux, and the cloud first appeared on 4sysops.

If you received the error message "Windows 10 Enterprise subscription is not valid," this post will show you how to troubleshoot subscription-based activation issues on Windows 10 and Windows 11 for Azure AD joined devices. I've run into this issue a couple of times now; it only shows up 30 days after adding a second work account on an Azure AD joined device.

The post Windows 10/11 Azure AD/Intune Enterprise subscription is not valid first appeared on 4sysops.