Windows Defender Firewall Connected to Public Instead of Domain
Hi, Suddenly our PC that Joined to a Domain has Incorrect Network Profile on Windows Defender Firewall: -- But Connection Profile in Network Settings is Correct: -- I also has tried to delay Network Location Awareness on Startup: This is happening…
Cumulative Updates for Windows 10 22H2 (2024-04)
I've been informed by my IT that my device has many CVEs as below (Data generated on May 8th): I've been asked through Microsoft Community and found out that by installing latest Cumulative Updates from Microsoft Update (2024-04), It can cover up all…
Cumulative Updates for Windows 10 22H2 (2024-04)
Hi, I would like to ask about CVEs found on my laptop (got the information from IT). Below around 162 CVEs are found from my device which my device is missing security updates: This data is generated on May 8th. Now I have installed Cumulative Updates…
UAC prompt is blocked when I use Quick Assist
Hi all, I have the following trouble when I use Quick Assist tool of Windows 10: all users inside company are "Standard User" and they can not run any software as Administrator. Sometimes these users ask me remote support, so we use Quick…
Windows Update keeps looping through and asks to restart | KB5036892 - 2024-04
Hi All, Hope you are well. We are experiencing issues with the Windows update. It keeps updating, installing, asking us to restart, after the restart, again it asks to update the windows. This loop keeps going through. Issue occurs with this security…
CVEs VS Latest Windows Cumulative Updates
Hi, Could anyone explain and provide the evidence about Latest Cumulative Update? I have one laptop that is missing security updates from my IT while the Windows Update shows that my system is up to date. The missing updates are in CVE. I have searched…
firmware component of vulnerability management
If you have responsibilities in a corporate environment for vulnerability management/security patching of windows based desktops and laptops, how do firmware updates that address critical vulnerabilities compare to software related updates? in terms of…
on-prem AD joined patch management solutions
Which are the most common (modern) patch-management tools used in a corporate environment to patch modern versions of Windows (and MS server/desktop apps) installed on desktops/laptops/servers still joined to a traditional on-premises active directory…
RPC Endpoint Mapper Client Authentication uses NTLM
Introduction The main goal is to secure existent windows 10 clients. As there a few hardening recommendations from for example CIS and Microsoft concerning secure OS configuration i discovered a potential misleading dependency regarding NTLM and RPC. …
Windows Defender keeps losing ASRs deployed by Intune
Hi all, for the whole last week, I have a very strange and recurring problem. Environment: Location EU0501, most devices HAADJ, some devices autopiloted entra only, Windows 10 and 11 on 22H2 or 23H2, Patchlevel 2024-02 or 2024-03 - so up to date. hybrid…
cannot turn on Kernel-Mode Hardware-enforced Stack Protection
I noticed that my Windows 11 Professional system in the Windows Security / Device Security / Core Isolation settings has "Kernel-Mode Hardware-enforced Stack Protection" disabled and grayed out, and above that it says that "This setting is…
Is there a way to retrieve data from a BitLocker-encrypted hard drive in a laptop with a roasted motherboard?
I have a Dell Inspiron laptop with a blown-out motherboard, and I am unable to access the hard drive by using an SSD enclosure and connecting it to my desktop, as BitLocker is activated. I have two Microsoft IDs that are linked to the laptop as devices,…
Is Microsoft downplaying support for ECC certificates?
Hi folks, does anyone have any insight into this statement Microsoft's trusted root program requirements page that was updated in Feb? Signatures using elliptical curve cryptography (ECC), such as ECDSA, are not supported in Windows and newer Windows…
Security key 0xc000005f
Environment: Windows 11, Server 2016, Azure AD Free. Problem: Your credentials could not be verified. (0xc000005f) I am trying to activate fido2 security key in my domain. The key which I am using is a Yubikey Bio Fido Edition. First: I activated…
What are the benefits of the existing single forest AD Domain to convert or upgrade the AD Domain Controllers from FRS to DFSR?
What are the benefits of the existing single forest AD Domain to convert or upgrade the AD Domain Controllers from FRS to DFSR? https://learn.microsoft.com/en-us/windows-server/storage/dfs-replication/migrate-sysvol-to-dfsr FFL & DFL: Windows Server…
Missing SSD option in Boot Manager after changing from Legacy to UEFI boot mode
Hi, my name is Nitish. I have a Lenovo IdeaPad S145-15IKB laptop and recently tried to play Valorant on it. I received an error message that said I needed to enable secure boot. After doing some research on YouTube, I found out that I could fix the…
Trusted Platform Module - Key Attestation not working
Dear Community, I've been on this for several days now and i just can't get it to work. So my hope lies with you guys! :-) My issue is the following: I have a Intel NUC with a TPM 2.0 device. I try to use Auto-Deployment with Shared Multi-user…
securityhealthservice.exe missing and windows security at a glance
i have a problem with my windows security, i cant open it and it always said Windows security at a glance, also when i try to fix it with tutorial on youtube, i cant find my securithhealthservice on system. is there a solution? (my device are…
How to get rid of the Windows Firewall Notification
Hi all, I disabled the Windows Defender Firewall for my lab system due to the system requirement. However the notification always pop up and i noticed that if the user accidentally clicked it, the firewall will eventually get turned back ON. …
Reputation with OV certificates and are EV certificates still the better option?
Hi, I'm an indie developer writing an Electron application. I've registered a cooperation in Canada a few months ago and I purchased an OV certificate for my software. The poor wording of the Windows Smart Screen Defender makes most of my non-technical…