Automating Windows Virtual Desktop Image build with Hashicorp Packer
In previous blog posts I’ve been writing a bit about the lack of image management options within WVD has (https://msandbu.org/bulding-vdi-solutions-in-microsoft-azure-and-now-with-windows-virtual-desktop/), so therefore we need to be creative in how to actually handle image management and updating. One of the options that I discuss…
Read More »CVE-2020-0796 remote code execution vulnerability in SMB Protocol 3.0
Yesterday a big new vulnerability in the SMB protocol stack was published. The security flaw, tracked as CVE-2020-0796, is not included with this month’s March 2020 Patch Tuesday updates, and is unclear when it will be patched. The vulnerability is due to an error when the…
Read More »The Enterprise ready browser Microsoft Edge for business – How to configure for Edge
With Microsoft now releasing Microsoft Edge built on top of Chromium which is an open-source browser project together with its own enterprise security features, I see it as the main browser for enterprises moving forward. So how do we get started roll-out Edge to…
Read More »Storage services and considerations for Microsoft Azure
Within Microsoft Azure there are numerous storage options which can be used for different workloads such as Container workloads for stateful storage, or big data solutions which requires high IOPS for calculation of workloads or even traditional blob storage which is useful for…
Read More »The battle for Hybrid PaaS and Kubernetes workloads?
In december I had a blogpost about the battle for Hybrid PaaS services https://msandbu.org/the-battle-for-hybrid-paas-is-here/ where I described some of the capabilities that the different cloud providers are aiming for when it comes to Hybrid PaaS services such as Google Anthos, Azure Arc and Amazon Outposts….
Read More »Upcoming change – Microsoft to disable use of unsigned LDAP port 389
In March 2020, Microsoft is going to release a update which will essentially disable the use of unsigned LDAP which will be the default. This means that you can no longer use bindings or services which binds to domain controllers over unsigned ldap…
Read More »Delivering Citrix ICA/HDX using Traffic Manager, Frontdoor or Azure VWAN?
This was a topic that came up during a discussion earlier today, and looking at the Google Search Results on my blog It seems like that this is something that some people are looking for some answers for, so therefore I decided to…
Read More »AMD Radeon GPU on Microsoft Azure – NVv4 Series and VDI
I’ve previously written about the new upcoming NVv4 series virtual machine instances which are the new series of GPU based instances in Microsoft Azure which are now coming with AMD Radeon based GPU’s (https://msandbu.org/introducing-the-nvv4-azure-virtual-machines/) these new instances are the first coming with support…
Read More »Citrix NetScaler (ADC) vulnerability CVE-2019-19781
For those that are not aware, but vulnerability (CVE-2019-19781) has come up , which affects Citrix ADC and Citrix Gateway which essentially allows an unauthenticated attacker to run arbitrary code on the appliances. NOTE: That the vulnerability is leveraging the NetScaler ADC Gateway feature,…
Read More »Automating Azure Sentinel deployment using Terraform and PowerShell
As part of an on-going project I was tasked with to automate a Sentinel setup using Terraform and PowerShell. Now if you haven’t read about Sentinel before, here is a bit more information available –> https://msandbu.org/designing-an-azure-sentinel-solution/ one of the current limitations as of now with…
Read More »