IT Baseline Protection

Windows LAPS and the migration from Microsoft LAPS

by
20230809 WindowsLAPS 08 Windows LAPS and the migration from Microsoft LAPS 1

In this era, the topic of IT security is becoming more and more important. A possible attack vector has always been the local admin passwords. In most cases, these were hard-wired into the installation image and had not been changed for years. Not only a risk from former employees. The lateral movement also poses a … Read more

Active Directory Service Recovery Mode (DSRM)

by
Learn about Active Directory Service Recovery Mode (DSRM) - a critical but often overlooked feature of Active Directory. This article highlights the importance of DSRM, how it works, and the risks associated with unauthorised access. It also presents best practices for handling and changing DSRM passwords. Finally, it discusses the role of DSRM in the context of IT baseline protection. A must read for any administrator who wants to manage their Active Directory database securely and efficiently.

Learn about Active Directory Service Recovery Mode (DSRM) – a critical but often overlooked feature of Active Directory. This article highlights the importance of DSRM, how it works, and the risks associated with unauthorised access. It also presents best practices for handling and changing DSRM passwords. Finally, it discusses the role of DSRM in the context of IT baseline protection. A must read for any administrator who wants to manage their Active Directory database securely and efficiently.

German Federal Office for Information Security (German BSI) security recommendations for Windows 10

by
20210511 Screenshot BSI German Federal Office for Information Security (German BSI) security recommendations for Windows 10 4

The German Federal Office for Information Security (BSI) has published new documents on Microsoft Windows 10 and how to secure it. I looked at the BSI security recommendations for Windows 10 before I wanted to report on them. The background to this is that in the past, publications in this direction were sometimes more than outdated when they were published or they were very superficial.

Read more

Strategies for Windows as a Service – A Process-Oriented Perspective

by
Blog WaaS EN Strategies for Windows as a Service - A Process-Oriented Perspective 6

I am often asked about the right strategy for “Windows as a Service”. But is there the right way? The short answer is no. It depends as so often on the circumstances, the requirements of the customer and the other customer-specific circumstances. In this article, I would like to point out different ways to the subject of Windows as a Service (WaaS). You will also get tips on what to consider when searching for your way.

What is important is that Windows as a Service is not a project, it is a process. And the challenge is to develop the process for your company in such a way that it works performant but covers all contingencies. This doesn’t just include the question if you want to skip releases.

Read more