from time to time I consult customers in the configuration of Windows 10 AppLocker. I really love AppLocker because it’s super simple, reliable and enterprise ready in terms of administrative overhead. Furthermore it’s the recommended tool for the configuration of unwanted / not needed apps within Windows 10. But sometimes AppLocker kind of “breaks” my Windows 10 start menu and stops Apps from strarting up. Although the AppLocker enforcement is disabled.
I’m super happy to be part of the “The People’s History of ConfigMgr”. It’s the second half of the “ConfigMgr @ 25” documentary series, and this story is told solely by the ConfigMgr community. For the first time on camera and on the record, a wide variety of ConfigMgr fellows talk openly as they reflect on their good (and terrible) experiences, how it changed the way they work, and what ConfigMgr has meant to their careers — and the industry.
I finally found the time to wrap up Microsoft Ignite 2017 in Orlando / Florida. I had the great honor to have three different stage experiences. But for sure the breakout session in a fully packed room was the absolute highlight.
The current Windows 10 Insider Build 16257 includes upcoming features of Redstone 3 and Windows 10 1709. Also included are all the features of the Windows Defender Application Guard (WDAG). The feature will work like a sandbox. The feature is intended to prevent malicious content and downloaded files from harming the system. After surfing, the isolated tab closes and clears all malicious code together with the temporary container. Admins can already create Whitelists from harmless pages that start in conventional Edge windows. Pages not listed then open in an application guard container within Edge.
With the Windows 10 Creators Update (1703) we have received a possibility to configure the “Windows Settings”. The Windows settings are the new, unified system control menu that was introduced with Windows 10. This menu is particularly critical because many of the Enterprise’s unsuitable features can be configured through this menu. This created the need to remove or hide specific settings.
I had the honor to present a session on “Microsoft Tech Summit“ serie or „Microsoft Cloud Summit“ in Frankfurt. My session was about „Enhance Windows 10 deployment: what’s new with Windows 10 deployment?“.
with the acquisition of Secure Islands in November 2015, Microsoft announced (June, 2016) a new product called Azure Information Protection. This new service builds on the new adoption for document and file labeling and the already existing server Azure Rights Management (Azure RMS). With AIP you can classify, protect and encrypt content from the beginning and within its lifecycle. Furthermore you can define by whom mails or files can be opened, can set an expiration date and you can revoke file access from already sent files. But more on the details later. Since October, 4 2016 Azure Information Protection is GA and it’s time for us to have a look on what’s behind.