What is the German IT baseline protection (IT-Grundschutz)?

IT Security, Cyber Security, image on the topic of IT security that features a lock at the center of the image as a central symbol for protection and security. Surround the lock with circuitry and electronic components in the background to establish a connection to the digital world and technology.

The German IT-Grundschutz forms the basis for IT security in Germany and is internationally recognised. This is a collection of recommendations that help IT systems to be protected against security threats. In this blog article, I would like to take a closer look at the origin, international acceptance and structure of the German IT-Grundschutz.

German Federal Office for Information Security (German BSI) security recommendations for Windows 10

20210511 Screenshot BSI German Federal Office for Information Security (German BSI) security recommendations for Windows 10 2

The German Federal Office for Information Security (BSI) has published new documents on Microsoft Windows 10 and how to secure it. I looked at the BSI security recommendations for Windows 10 before I wanted to report on them. The background to this is that in the past, publications in this direction were sometimes more than outdated when they were published or they were very superficial.

Read more

Microsoft identified a critical vulnerability and closed it via the Microsoft Store

graphical user interface, application

I have already addressed the question of the correct handling of the Microsoft Store several times, for example in the article “Windows 10 and the Microsoft Store“. Now it is all more important that the IT departments deal with the topic again.

Read more

Setting up Office 365 – Part 2

Setup Office 365 - Part 2

This article is part of my migration from my old Office 365 to my new Microsoft 365 Tenant. It is also about setting up Office 365, the other Microsoft 365 topics will follow later. I also have written this article intentionally so that it can also be used for setup outside of a migration scenario. Part 1 was about choosing the right edition, setting up the account and configuring the domains and DNS.

Read more

Website monitoring with PRTG

Webserver Überwachung mit PRTG

This time an article slightly outside the Microsoft world. This time there is an excursion into monitoring and the monitoring of web servers under Linux. Some know this, nothing is worse than when the website you want to visit is not reachable. Since this happened to me 2 times in 2 days, the web server has hung up and I could not find the error, something had to be done.

Read more

Ignite day 2 – Modern Management recap

Computergenerierter Alternativtext: Microsoft Intune Configuration Manager Other Endpoint Management Tools Integrated solution for IT admins to understand and take action across all endpoints in their estate Microsoft Endpoint Manager Status and alerts

Today was day 2 of the Microsoft Ignite in Orlando. Today I was in the focus in sessions about modern management on the move. That means, for example, Microsoft Intune, but especially the newly announced function of the “Microsoft Endpoint Manager”.

Read more

Local Administrator Password Solution (LAPS)

041917 0532 LocalAdmini5 Local Administrator Password Solution (LAPS) 11

In the past, a company-specific standard was usually always used for local administrator passwords. But what do you do if an employee who knows the default password leaves the company?

Right, it should be changed. In the past, Group Policies (GPO) were often used for this, even if the password was in clear text in SysVol. This was fortunately stopped by Microsoft. What other solutions are available? In practice I have seen VBS or PowerShell scripts, the good ones have random passwords, the bad ones only a standard.

But isn’t there a well designed solution from Microsoft? Yes, there is, Local Administrator Password Solution (LAPS).

Read more