Standard users can install Microsoft PowerToys without requiring administrative privileges, which may be undesirable in managed environments. However, certain tools from the PowerToys suite might be beneficial for specific users. Group Policy allows administrators to control which utilities are available.

Source

Windows Server 2025 offers multiple options for running Docker containers, supporting both Linux and Windows. Users can choose between two isolation modes for Windows containers, while Linux containers can optionally run on WSL 2. Additionally, Server 2025 improves backward compatibility.

Source

Authentication policies in Active Directory support access rules that allow restricting user logins to specific computers. Rather than statically assigning individual computers to a policy, you can define custom claim types that include or exclude computers based on specific characteristics.

Source

By default, Active Directory imposes limited restrictions on the protocols or devices a user or service can use to log in. You can implement authentication policies and enforce specific limitations and restrictions to enhance login security. Active Directory offers several methods to disable outdated protocols, such as NTLMv1, or to restrict user logins to particular workstations. This can be achieved through various Group Policy settings, and the Protected Users group automatically enforces a set of security restrictions.

Source

Since Windows Server 2012 R2, Active Directory (AD) has included a built-in global security group called Protected Users, designed to enhance the security of its members through predefined authentication policies. Before adding accounts to this group, it is essential to review the necessary prerequisites and monitor related events to ensure smooth implementation.

Source

With Windows 11, Microsoft has not only changed the appearance of the Start menu but also its technical underpinnings. However, the Group Policy settings for configuring Start have not been updated. While it remains possible to add icons using Group Policy Objects (GPO), you must accept some limitations.

Source

Memory is often one of the most constrained resources on a Hyper-V host, ultimately determining the maximum number of virtual machines (VMs) it can support. As such, accurately assessing the RAM requirements of VMs is critical for effective capacity planning. These requirements can be evaluated using performance counters available in Perfmon.

Source

Once you determine a VM's memory requirements, you can configure its RAM settings accordingly. Hyper-V provides several configuration options, some of which can influence each other or have effects that may not be immediately obvious, especially when enabling dynamic memory.

Source

OSConfig, a new feature in Windows Server 2025, allows you to configure Microsoft's recommended security settings. These settings largely align with the security baselines. Management options include PowerShell, the Windows Admin Center, and Azure Policy. OSConfig can automatically detect and correct configuration drifts, ensuring compliance.

Source

The Domain Name System (DNS) is susceptible to attacks that redirect clients to malicious services. Technologies like DNSSEC, DoH, and DoT have been developed to mitigate such threats. In addition, Microsoft introduced Zero Trust DNS (ZTDNS) in Windows 11, which blocks all connections unless a trusted and secure DNS server has resolved their IP addresses.

Source

Several authentication methods are available when using Outlook as an IMAP client for Gmail. Older versions typically rely on username and password, while newer clients support more modern, secure approaches. However, users frequently face challenges accessing their mailbox if a Google account password changes.

Source

The new Outlook falls short of meeting the functionality and quality expectations of many businesses, yet Microsoft is pressing organizations to make the switch. To block an unwanted migration to the new client, administrators can configure several Group Policy settings, including one that allows users to revert to the previous version of Outlook.

Source

In an Active Directory domain, it is crucial to sync the system time across all computers as accurately as possible. Since the 2016 version, Windows Server can greatly minimize discrepancies in system clocks. This feature, referred to as Accurate Time, can be configured with Group Policy settings, provided that specific conditions are fulfilled.

Source

Windows 11 24H2 and Server 2025 improve the SMB protocol with a strong focus on security. One key feature is the ability to change ports to TCP 445, which offers enhanced security and flexibility. However, this capability is restricted to the QUIC transport on the server side.

Source

Active Directory is a core element of most lab environments, and it’s often essential to populate it with realistic data, especially for user accounts. These accounts should feature values for key attributes to reflect a functional directory. Fake user data is available in CSV format, but you'll need to clean it before importing into the directory.

Source

Windows Server 2025 introduces significant improvements for Active Directory, including increased scalability thanks to the Jet database's 32K pages. New Server 2025 forests can immediately leverage this feature, whereas existing domains must be raised to the new functional level before you can enable the 32K database.

Source

With Windows 11 23H2, the Local Administrator Password Solution (LAPS) became integrated into the OS, and 24H2 brings several interesting new features. These features include the automatic management of local admin accounts, the implementation of passphrases, and the automatic generation of a new password following a computer reset.

Source

Six months ago, Broadcom made VMware Workstation and Fusion available free for private use. Now, the company has extended this offer to include free professional use. However, downloading the software from Broadcom's website remains challenging.

Source

Windows Server 2025 introduces new pricing and licensing options, with notable updates to the Standard and Datacenter editions. License fees have increased by 10 to 20 percent.

Source