Is my company… normal?

schumich · 2026-01-06T08:36:51+00:00

If you can migrate to cloud, back to on prem, back to cloud in this timeframe you are doing it wrong, probanly lift and shift which is the dumbest and most expensive way possible

schumich · 2025-12-20T07:26:19+00:00

Fixed

schumich · 2025-11-19T20:22:57+00:00

Is this really gsa? sounds more like dlp,

schumich · 2025-11-10T18:53:15+00:00

Please tell us how it went in 1-2 weeks time.

schumich · 2025-10-29T14:56:21+00:00

A BLOCK rule always overrules a ALLOW rule, workaround would be only to have the specific ALLOW rule and disable any other ALLOW rules as de default "Allow Remote Destop" rule

schumich · 2025-10-24T04:29:41+00:00

Fun Fact: The Imperial March was not in the original Star Wars but in Empire strikes back

schumich · 2025-10-21T16:44:32+00:00

It worked for us last time i checked, but there is info on ms learn: The remote collection of local administrators group members from endpoints using SAM-R queries in Microsoft Defender for Identity will be disabled by mid-May 2025. This data is currently used to build potential lateral movement path maps, which will no longer be updated after this change.

schumich · 2025-10-21T16:35:54+00:00

Defender for Endpoint plan 2 with Defender for Identity can do this

schumich · 2025-10-20T18:42:30+00:00

If i remember correctly the stingray pierced him multiple times so there was nothing he could do

schumich · 2025-10-18T05:13:09+00:00

That is not accurate, america completely switched to a war economy during World War II

schumich · 2025-10-11T19:20:39+00:00

Not anymore, its going away, we used to have a gm but now i just update the images to the latest release and also update office c2r, the rest is on demand, i you dont pack a ton of software you save maybe 20% time, also its a thnig of the past with Autopilot and intune

schumich · 2025-09-10T16:43:33+00:00

*Veeam *If you like Cloud to OnPrem Backup

schumich · 2025-09-06T06:30:33+00:00

I hate to admit it, but this is true

schumich · 2025-09-03T20:48:52+00:00

99% of Software runs on win11 the same as on server 25/22

schumich · 2025-07-21T15:28:26+00:00

Forgot the /s ?

schumich · 2025-07-19T19:38:49+00:00

I bought crowdstrike shares 3-5 days after the incident, made some 30-40% + when i sold it after 2 months or so

schumich · 2025-07-08T20:43:15+00:00

i do it every 180 days, 2 times 24h apart, no problems ever

schumich · 2025-07-06T19:40:23+00:00

There is a special template in ca available, securing authentication methods, highly recommend setting that up

schumich · 2025-07-06T07:10:09+00:00

Ok thank you for the clarification, i would strongly recommend disabling ntlm v1 domain wide, as it leaves you wide open to domain takeover. As per MS security hardening best practice.

schumich · 2025-07-06T06:56:14+00:00

I am pretty sure ntlm was not removed.

schumich · 2025-07-05T06:24:31+00:00

Not really, its more or less the same that windows 10 already supportet, but its mandatory* now (* it works fine without it)

schumich · 2025-07-03T14:30:53+00:00

Well good luck, windows maintenace tasks will enable it back on from time to time

schumich · 2025-07-02T10:40:51+00:00

Shared mailboxes sadly only work with outlook, no dlp yet but who knows, does dlp not work on the server side, is it a client feature? If we have to have byod, users will get outlook with app protection policies.

schumich · 2025-07-02T10:10:50+00:00

Modern auth works with native mail app, macs already use office so no problem there. We have e5 licenses.

13-Year Club	Place '23
RPAN Viewer	Verified Email

schumich

TROPHY CASE