How to Setup IIS for SSL Perfect Forward Secrecy and TLS 1.2

An often overseen action is to lock down Internet Information Services. You can increases security of SSL connections to your server by disabling insecure SSL2 and SSL3 and all insecure and weak ciphers that a browser may fall-back, too. I recently found a great PowerShell script, which can help implement the current best practices for IIS … Read more

Error Loading Groups in Azure MFA Server

If you have implemented an om-premise Azure MFA server and have an Active Directory with many objects, you might have run into this issue (Error loading security groups), when trying to load groups in the Directory Integration – Synchronization of the Azure MFA Server Console. The error is seen when choosing Add under the Synchronization … Read more

How to repopulate TPM with BitLocker Recovery Key after a Motherboard replacement

If you run Bitlocker and get your motherboard (mainboard) replaced, e.g. could be from a repair of the PC or Laptop. Then you would start to get prompted for Bitlocker Recovery Key every time you start your PC, This happens because the TPM chip on the new motherboard, does not contain any information about the … Read more

ASP.NET Vulnerability and Exchange

The announced ASP.NET vulnerability (Microsoft Security Advisory (2416728) from Microsoft is also affecting Exchange Server. The Exchange Team has tested the patch for this vulnerability and has approved it and it’s recommended to apply this to your Exchange servers as soon as possible. The Exchange Server team has completed validation of this fix against Microsoft … Read more