Kyverno is a Kubernetes-native policy management tool that automates and enforces policies for validating, mutating, and generating Kubernetes configurations. The Kyverno team has just unveiled version 1.12, which introduces a host of new features. These include dedicated storage for policy reports, integration of Kyverno JSON into the CLI, refined policy exception handling with conditions, and other improvements.

In professional environments, most store apps delivered with Windows are of little value, prompting admins to remove them from the image before deployment. However, you should avoid indiscriminately deleting them, as some system-relevant apps may be among them. PowerShell can be used to remove the crapware selectively.

Microsoft Graph activity logs, a component of Microsoft Graph, is now generally available. Microsoft Graph is a unified API that provides access to a wide range of Microsoft 365 services and data, enabling developers to integrate and interact with services like Outlook, OneDrive, Teams, and SharePoint through a single endpoint. Microsoft Graph activity logs provides a detailed record of user and admin activities across Microsoft 365 services, enabling monitoring, auditing, and analyzing actions within the organization's environment. In this post, I explain Microsoft Graph activity logs use cases and outline how to install and integrate them with Azure Monitor logs.

Docker Desktop 4.18 introduced Docker Init, a helpful command to streamline the initial setup process of containerizing your applications. It lets you generate the necessary Docker assets by simply answering a few questions, saving you precious time and effort.

Many admins prefer to use a customized image rather than Microsoft's standard image for deploying Windows 11. This involves creating a reference installation of the OS tailored to their specific needs. After generalizing it with Sysprep, the image is written to a WIM archive using DISM or PowerShell.

The multitenant organization feature, available as a preview since mid-2023, is now available for Microsoft 365 production environments. In this article, I will explore the new feature and explain how to configure it in M365.

OpenTofu, a Terraform fork, is an open-source infrastructure as code software solution that allows you to define and manage the complete infrastructure lifecycle using the HCL (HashiCorp Configuration Language). In this post, I'll walk you through the steps to create an S3 bucket in AWS using OpenTofu.

Lens is an open-source desktop application aimed at managing Kubernetes clusters. It offers a graphical user interface as an alternative to working directly with the Kubernetes command-line interface (kubectl). Lens includes features for monitoring cluster resources, viewing logs, and accessing a built-in terminal. The new Lens 2024 Early Access version introduces a completely redesigned user interface with a more streamlined and intuitive layout, tabbed navigation, and a unified navigator for managing all clusters and resources.

Microsoft has recently announced that Basic Authentication in Exchange Online SMTP AUTH will be disabled in September 2025. In this post, I will discuss the implications of this announcement and provide guidance on what steps you can take to ensure your email applications and devices remain functional.

There are several reasons why Windows Update may fail or not work, including malfunctioning services, damaged Windows updates, insufficient free disk space, or faulty Windows devices. This article will walk you through seven methods to troubleshoot Windows Update.

The Kubernetes project recently announced the release of version 1.30, named Uwubernetes. The name "Uwubernetes" is a portmanteau of "Kubernetes" and the "UwU" emoticon, which indicates happiness or cuteness. In this article, I’ll discuss the new key features.

Ubuntu 24.04 LTS (Long Term Support), codenamed "Noble Numbat," was released in April 2024 and introduced several new features across various aspects of the operating system.

For security reasons, it makes sense to replace the recovery password used to unlock an encrypted drive each time with a new one. This new password will be automatically stored in Active Directory with the appropriate BitLocker configuration. However, the old keys remain in the AD and can be deleted.

In a previous post, I shared a bash script that enables you to effortlessly create an Amazon Machine Image (AMI) from an EC2 instance in AWS. The bash script introduced in today's post allows you deregister an AMI and delete all associated snapshots in AWS.

When organizations implement a lockout policy, it is common for users to lock themselves out and require assistance from the helpdesk. In such cases, helpdesk personnel without administrator rights require permission to unlock user accounts. This can be achieved through delegation.

If you are virtualizing critical workloads, you want to ensure they do not fail if a host goes offline. All common platforms offer the capability to operate VMs in a high-availability cluster. Proxmox allows you to install a cluster even in the free version.

Proxmox Virtual Environment (VE) 8.2 includes new functionalities such as an automated installation tool for more straightforward setup on bare-metal servers, a migration wizard for VMware ESXi virtual machines, and a switch to an nftables-based firewall for enhanced security. It also introduces LXC device passthrough for containerized workloads and advanced backup settings to optimize resource utilization during backups. These updates are part of a broader release that updates core technologies and system components.

An essential step towards automating the Windows setup process is replacing the system drive's interactive partitioning with a script. Microsoft's examples for this purpose rely on batch files and Diskpart. However, installing PowerShell in Windows PE allows for a much more elegant solution.

Microsoft will retire the Role-Based Access Control (RBAC) application impersonation role in Exchange Online in May 2024. Applications widely use this role in Exchange Online as it enables them to impersonate users in the tenant to perform actions on behalf of the users. You must migrate all your applications from using this role to other options. This article will explore Microsoft's reasoning behind this move and the current alternatives.