CVE-2023-24932. 2023 feels like so long ago, and yet, this is still an issue. Why? Because it’s quite frankly a mess to deal with and
Author: Anthony J. Fontanez
Windows Sysadmin, focused on ConfigMgr, Intune, PowerShell, AD/AAD, & Security. Admin team member for the WinAdmins Discord community - https://winadmins.io/
The settings in the above screenshots were fairly common to be applied to all workstations as a requirement 20-ish years ago. However, it’s now 2025,
This post is mostly sourced from https://techcommunity.microsoft.com/t5/itops-talk-blog/step-by-step-migrating-active-directory-certificate-service-from/ba-p/2328766, along with some helpful notes, screenshots, and code samples from my own experience. It’s mostly here for my
Trusted Certificate profiles in Intune are great. Unfortunately, the only certificate stores you can access with these are the Trusted Root and Trusted Intermediate stores.
Part I Alright, now on to where things get more complicated, WinRM connections to and from Azure AD joined clients. I’m going to use two
After a number of conversations with Adam Gross in Discord voice on WinAdmins about this topic, which initially started on Twitter a while back, I
2023-03-14 Update: The following post is now considered deprecated, as the updates released on 2023-03-14 offer a much better solution that does not involve workarounds.
I’ve recently worked through a number of different situations involving upgrading ConfigMgr infrastructure away from older version of Windows Server and SQL Server. In this
If you’re crazy like me, you go all out when running a homelab. Multiple domain controllers, role-based access, separate servers per role (for the most
2025-02-27 Update: This entire post is now irrelevant, see https://techcommunity.microsoft.com/blog/intunecustomersuccess/microsoft-intune-connector-for-active-directory-security-update/4386898 for more information. Disclaimer: I recommend utilizing pure-AAD join in 99% of use Autopilot use