In this article I show the manual Windows 11 installation and the first insights. The version used is from the Beta Channel, the Windows 11 Enterprise 21H2 (OS Build 22000.194) version. Since Windows 11 is already installed on my test hardware via in-place upgrade, I use a Hyper-V VM for this. It is absolutely necessary to use a VM of the 2nd generation. SecureBoot and the TPM must also be activated in the VM, otherwise the installation will fail.
Automatic Virtual Machine Activation (AVMA) with Windows Server Datacenter (Update)
Behind the feature “Automatic Virtual Machine Activation” is a function in Microsoft Windows Server 2012R2 Datacenter, Microsoft Windows Server 2016 Datacenter and Microsoft Windows Server 2019 Datacenter for Hyper-V, but it works only with the Datacenter Edition activated. With this feature, all supported Windows Server operating systems since Microsoft Windows Server 2012R2 can be automatically activated by the Hyper-V host. But only up to the own version, which means that a Windows Server 2012 R2 Datacenter Hyper-V cannot activate Windows Server 2016. The limitation of this feature to the Datacenter Edition is due to the unlimited Virtual Windows Server Guests covered by the Datacenter License. The advantage is that it is now easier to assign the license to the corresponding datacenter license during a software audit on the AVMA license key.
German Federal Office for Information Security (German BSI) security recommendations for Windows 10
The German Federal Office for Information Security (BSI) has published new documents on Microsoft Windows 10 and how to secure it. I looked at the BSI security recommendations for Windows 10 before I wanted to report on them. The background to this is that in the past, publications in this direction were sometimes more than outdated when they were published or they were very superficial.
Intune packaging made simple
I like to work with installation wrappers for packaging. It doesn’t matter whether it’s Microsoft System Center Configuration Manager (SCCM) or Microsoft Endpoint Configuration Manager (MECM) or the Microsoft Deploment Tollkit (MDT), I have also used them for Microsoft Intune packaging.
Software management with Chocolatey
This time it is about a so-called “freemium” software management solution. Feemium is made up of the two words “Free” and “Premium” and means that the software can be used free of charge, but certain functions cost extra. With mobile apps, this also means banner ads and annoying video commercials, but that is not the case here. This article is exclusively about the free version.
Microsoft 365 Licence Plans
With Microsoft 365, there are various plans, and you don’t always find the one you are looking for. Here is an overview of various Microsoft 365 plans, some with the order links behind them. These links are affiliate links, which means we get a commission without changing the costs. This helps us to run this blog and create content.
A new home for the downloads
After my download solution annoyed me a few times, I outsourced the download. The new home for the downloads is GitHub. This also makes it easier for me to maintain and update.
The Windows 10 Sandbox
The Microsoft Windows 10 Sandbox is a new security feature in Windows 10 Pro and Enterprise. The idea behind it is to try something out in a safe “sandbox”. For example, installing a potentially insecure application.
Let’s get started with the sandbox game….
User-related administrative templates in Intune (version 2101)
Let’s first look at the comparative figures between the last article from October 2019 and now. The Edge Bowser and Microsoft Office have seen the most changes.
Device-specific administrative templates in Intune 2101
Let’s first look at the comparative figures between the last article from October 2019 and now. The most changes have been made to Edge Bowser and Internet Explorer. There are also new settings for BitLocker. These were previously only configurable via their own policies in Intune.