Thursday, February 19, 2015

Getting Started with Windows Server Security

My new book “Getting Started with Windows Server Security” will be available next week.   More information about this book can be found:



About This Book

· Learn how to identify and mitigate security risks in your Microsoft Server infrastructure

· Develop a proactive approach to common security threats to prevent sensitive data leakage and unauthorized access

· Step-by-step tutorial that provides real-world scenarios and security solutions

Who This Book Is For

If you are a Windows Server or security administrator wanting to learn or advance your knowledge in Microsoft security and secure your Windows Server infrastructure effectively, this book is for you.

What You Will Learn

· Design a secure Windows Server platform based on the best practices and industry standard recommendations

· Identify and mitigate security risks using tools such as Security Configurations Wizard, ASA, App Locker, Bit Locker, and EMET

· Follow step-by-step instructions to tighten the security of your Active Directory file, print server, Hyper-V and IIS servers, and application roles

· Develop a secure access control mechanism using the Dynamic Access Control (DAC) feature

· Learn how to maintain security and deliver new security updates and patches using the Windows Server Update Service (WSUS)

· Discover how PowerShell cmdlets and custom scripts can support your day-to-day security administration tasks

In Detail

Implementing and maintaining security is a critical task for any organization; however, developing a proper solution based on your requirements can be time consuming and complex. Windows Server 2012 provides security features and solutions that can be used as standalone security solutions as well as integrated solutions with your existing security or auditing tools. These native and built-in tools can secure Microsoft infrastructure platforms based on Microsoft and industry standard best practices.

Getting Started with Windows Server Security provides you with an invaluable tutorial for creating and implementing a stable, reliable security solution for your Microsoft infrastructure.

To begin, you will learn how to implement baseline security using Microsoft Security Configuration Wizard (SCW) and how to lock down unwanted services, along with how to configure your Windows firewall. You will see how to enable and use native tools including App Locker and Credential Locker to identify and mitigate risks and make Windows Server more secure.

This book also walks you through best practices for designing and building a secure Microsoft server platform, with instructions on configuration and managing Dynamic Access Control and polices.

Finally, you will learn how to install and configure Microsoft Windows Server Update Services (WSUS), which plays a critical role in the security space.

Tuesday, February 3, 2015

New Azure RMS and Active Directory Features

Source -

Departmental templates are now in public preview. Organizations may choose to create policy templates specific to the needs of departments or divisions. Departmental templates will allow administrators to define the scope of these templates. In other words, an administrator can define the list of groups or individual users who can apply a particular template. Only those people can view and use the templates to protect documents.

Organizations that are looking to move from AD RMS to Azure RMS can now use the Azure RMS migration toolkit. This toolkit enables AD RMS and Windows RMS customers to migrate to Azure RMS without losing access to their existing RMS-protected content or their policies.

To help organizations carry a phased deployment of Azure RMS, we’re introducing Onboarding controls. This lets you designate a subset of users who can start to protect content with Azure RMS. This deployment configuration is useful when first deploying Azure RMS, because it lets an organization build up Azure RMS usage at its own pace.

Other updates for Azure RMS include the availability of RMS sharing application for Windows Phone at Windows Phone store and some bug fixes for the RMS sharing application.

Read more at source -

Friday, January 30, 2015

Backup your PC data to Azure

Source -

On December 16, 2014 we announced that you can now backup the data from Windows 7, Windows 8 and Windows 8.1 machines, using Azure Backup. This is extremely useful for any of us who may not touch base in a specific office on a regular basis. I am constantly on the road away from the office and away from the pile of USB drives I use to backup all the data I carry with me.

Let see how we set that up.

Setup the backup Vault

First, in your Azure Subscription, login to the portal and click New in the action bar, than Data Services, Recovery Services, Backup Vault and quick create

Read more at source -

Wednesday, January 28, 2015

Remote Server Administration Tools for Windows 10 Technical Preview

Source -

Remote Server Administration Tools for Windows 10 Technical Preview enables IT administrators to manage roles and features that are installed on computers that are running Windows Server Technical Preview from a remote computer that is running Windows 10 Technical Preview.

Read more at source -

Tuesday, January 27, 2015

Azure Data Factory

In this video, Anand Subbaraj introduces us to Azure Data Factory (ADF), a new Azure service that helps data developers and IT professionals easily transform raw data into trusted data assets for their organization at scale.

ADF operates over a range of data services, and supports processing of on-prem SQL Server, Azure SQL Database, Blobs, and Tables using Hive, Pig and C# on HDInsight (Hadoop). With ADF, you can easily create and orchestrate simple, highly available, fault tolerant data analytics pipelines which can be monitored from the Azure Preview Portal.

Organizations all over the world are collecting, processing and gaining insights from more data than ever before – with ADF pipelines you can deliver transformed data from the cloud back to on-premises sources like SQL Server, or keep it in cloud storage; you can take advantage of the seamless connection with Power BI and other applications for the consumption of data assets.


Read more at source -

Azure Backup

Source  -

Azure Backup is a simple and reliable data protection solution which enables customers to back up their on-premises data to Microsoft Azure. It is built on top of Azure’s world class infrastructure and is offered in eight Azure geos. Azure Backup is easy to use and seamlessly protects data from Windows Server, Windows Server Essentials and System Center Data Protection Manager (DPM). DPM protects a wide range of Microsoft workloads and it is easy to extend their protection to Azure. Backups can be managed using PowerShell or through an inbox user interface.Your backup data is secure over the wire and at rest. The backup data is stored in geo-replicated storage which maintains 6 copies of your data across two Azure datacenters. With 99.9% service availability, Azure Backup provides an operational peace of mind.

Read more at source -

Monday, January 26, 2015

ADFS Deep Dive: Certificate Planning

Source -

The last blog was about planning for ADFS and what questions you should be asking when deploying it.

I said that the next blog would be about what conversations and questions you should have with the application owners. After some thought, I’ve changed my mind and decided to write about certificate planning. During almost every ADFS deployment I’ve been a part of, most of the conversations and planning revolve around certificates so I figured we should take some time to talk about this. ADFS relies heavily on public/private key certificate so if you’re not already familiar certificates, deploying ADFS will quickly get you re-acquainted. Like I’ve mentioned before, ADFS is a service that will need to grow with your organization’s needs and so proper planning is also required for certificates to ensure they will meet your growing needs and requirements.

The funny thing about certificates is that almost anything goes. For example, installing ADFS is really black and white – you either install it or you don’t. With certificates, there are so many options for deploying them that many customers forget the basics about public/private certificate signing and encryption. Like most things, certificates are mostly 90% planning and 10% execution.

Read more at source

Friday, January 23, 2015

Windows 10 Technical Preview ISO

Source -

Follow these steps to download Technical Preview:

  • Sign up for the Windows Insider Program, if you haven't already.

  • Read the system requirements.

  • Click one of the Download links on this page to download a special file—it's called an ISO file—that you can use to install the preview.

  • When the download is complete, transfer the ISO file to installation media such as a USB flash drive or DVD.

  • Double-tap or double-click setup.exe from the installation media, and then follow the steps.


    • Remember, trying out an early build like this can be risky. That's why we recommend that you don't install the preview on your primary home or business PC. Unexpected PC crashes could damage or even delete your files, so you should back up everything.

    • If you want to stop using Windows 10 Technical Preview and return to your previous version of Windows, you'll need to reinstall your previous version from the recovery or installation media that came with your PC—typically a DVD. If you don't have recovery media, you might be able to create a USB recovery drive.

    • After you install Windows 10 Technical Preview, you won’t be able to use the recovery partition on your PC to go back to your previous version of Windows.

Read more at source -

Monday, January 5, 2015

More Free eBooks from Microsoft

Source -

Some old books -

Microsoft System Center Introduction to Microsoft Automation Solutions

Microsoft System Center Introduction to Microsoft Automation Solutions
Rob Costello, Richard Maunsell; Mitch Tulloch, Series Editor
December 2014
112 pages

Get advice from experts in the field on how to use Microsoft automation solutions! This free ebook introduces you to two Microsoft Automation solutions: Azure Automation and Service Management Automation. It explores both of these tools and how they can be used to meet the automation needs of your Microsoft Azure cloud solutions or your enterprise datacenter environments.

Download the PDF (3.82 MB)

Download the EPUB file (5.02 MB)

Download the Mobi for Kindle file (10.3 MB)

Download Companion Files (12.7 KB)

Windows Server ebooks

Top of Page

Introducing Windows Server 2012 R2
Mitch Tulloch
November 2013
242 pages

Get a head start evaluating Windows Server 2012 R2—with technical insights from a Microsoft MVP and members of the Windows Server product team. Based on final Windows Server 2012 R2 release-to-manufacturing (RTM) software, this guide introduces new features and capabilities, with scenario-based advice on how the platform can meet the needs of your business. Get the high-level overview you need to begin preparing your deployment now.

Download the PDF (8.0 MB)

Download the EPUB file (22.5 MB)

Download the Mobi for Kindle file (40.3 MB)

Microsoft Azure ebooks

Building Cloud Apps with Microsoft Azure

Building Cloud Apps with Microsoft Azure
Scott Guthrie, Mark Simms, Tom Dykstra, Rick Anderson, and Mike Wasson
July 2014
198 pages

This ebook walks you through a patterns-based approach to building real-world cloud solutions. The patterns apply to the development process as well as to architecture and coding practices. The content is based on a presentation developed by Scott Guthrie and delivered by him at the Norwegian Developers Conference (NDC) in June of 2013 (part 1, part 2), and at Microsoft Tech Ed Australia in September 2013 (part 1, part 2). Many others updated and augmented the content while transitioning it from video to written form.

Download the PDF (6.35 MB)

Download the EPUB file (22.7 MB)

Download the Mobi for Kindle file (12.3 MB)

Introducing Microsoft Azure HDInsight
Top of Page

Introducing Microsoft Azure HDInsight
Avkash Chauhan, Valentine Fontama, Michele Hart, Wee Hyong Tok, and Buck Woody
May 2014
130 pages

In Introducing Microsoft Azure HDInsight, we cover what big data really means, how you can use it to your advantage in your company or organization, and one of the services you can use to do that quickly—specifically, Microsoft’s HDInsight service. We start with an overview of big data and Hadoop, but we don’t emphasize only concepts in this book—we want you to jump in and get your hands dirty working with HDInsight in a practical way.

Download the PDF (6.37 MB)

Download the EPUB file (8.46 MB)

Download the Mobi for Kindle file (12.8 MB)

Download Companion Files (6.83 MB)

Introducing Windows Azure for IT Professionals
Top of Page

Introducing Windows Azure for IT Professionals
Mitch Tulloch with the Windows Azure Team
October 2013
142 pages

Get a high-level overview of Windows Azure—and get a running start with this flexible cloud platform. Designed for IT professionals, this guide introduces core features and functionality, with technical insights and advice from a Microsoft MVP and members of the Windows Azure team. Topics include Windows Azure solutions, Compute services, Network services, Data services, and App services.

Download the PDF (8.0 MB)

Download the EPUB file (22.5 MB)

Download the Mobi for Kindle file (40.3 MB)

Get the book's companion files (2.33 KB)

Rethinking Enterprise Storage: A Hybrid Cloud Model
Top of Page

Rethinking Enterprise Storage: A Hybrid Cloud Model
Marc Farley
July 2013
120 pages

Discover how a hybrid cloud model—combining cloud storage services with traditional on-premise storage—can solve multiple storage challenges cost-effectively, all under a single data management system. Focusing on the Microsoft hybrid cloud storage solution, this book offers concise insights on technical, strategic, and practical considerations—so you can begin evaluating potential benefits to your organization.

Download the PDF (3.0 MB)

Download the EPUB file (3.8 MB)

Download the Mobi for Kindle file (7.2 MB)

Read more at source -

Monday, November 24, 2014

Microsoft Identity Manager (MIM) - Public Preview

Source -

MIM is the new name of the next major release for the formerly called - Forefront Identity Manager (FIM). We schedule MIM release to the first half of calendar year 2015.

MIM (like FIM 2010 R2) will be part of the Azure Active Directory Premium (AADP) offering. So if you are already an AADP subscriber, you can benefit from the existing FIM capabilities and upcoming MIM goodies.

MIM is an on-prem Identity and Access Management (IAM) system. As such it reduces the complexity of managing the identity lifecycle in organizations. This is done by automating some key IAM tasks, including:

  • Provisioning and synchronizing identities among heterogeneous directories and systems
  • Implementing IAM related workflows
  • Certificate and smart cards lifecycle management
  • Roles based access management
  • Self-service tasks (password reset, group management, etc…)


Read more at source -

Popular Posts


Twitter Delicious Facebook Digg Stumbleupon Favorites More