“AaronLocker” update (v0.91) — and see “AaronLocker” in action on Channel 9!

“AaronLocker” is a robust, practical, PowerShell-based application whitelisting solution for Windows. See it in action in this new Defrag Tools episode on Channel 9! [Update 28 January 2019: content moved to GitHub] This update to the original 0.9 release includes these improvements: Documentation updates, particularly in the area of Group Policy control; Blocks execution from…

2

The number 400

What is significant about the number 400? 400 is 20² 400 is divisible by: 1, 2, 4, 5, 8, 10, 16, 20, 25, 40, 50, 80, 100, 200, 400 400 equals 2⁴ * 5² or ( 2*2*2*2*5*5) 400 is a self-number which are generated by this formula:  You can write 400 like this: four hundred,…

1

Using AzureAD identities in Azure DevOps organizations backed by Microsoft Accounts

Azure DevOps now supports AzureAD (AAD) users accessing organizations that are backed by Microsoft accounts (MSA). For administrators, this means that if your organization uses MSAs for corporate users, new employees can use their AAD credentials for access instead of creating a new MSA identity. Using this feature doesn’t require any special configuration.  Just like…


How to securely connect to Azure from C# and run REST APIs

Three things that got me here.  First, I learned about creating a Service Principle in Azure and that the credentials for that those can be used to login to Azure, for a given Tenant/Directory ID.  See here “Create an Azure service principal with Azure PowerShell”, also here if you want to see how to create…


Deadline extended for connecting VSTS accounts to AzureAD

9-27-2018 UPDATE: Azure DevOps now supports having AzureAD users sign into MSA backed organizations.  Read my latest blog post for more information. On January 5, 2018, I announced that Visual Studio Team Services will no longer allow creation of new MSA users with custom domain names backed by AzureAD.  While most customers agree with the…


Best Practices for WordPress Security on Azure

This article was put together by Mangesh Sangapu and Yi Wang. Shout-out to Cory Fowler and Sunitha Muthukrishna for additional tips. WordPress Security is often an overlooked feature. Customers are quick to configure their site, but often forget to fine tune the security aspect. Here we have compiled steps that will help make your WordPress site…


Deploying Azure Web App Certificate through Key Vault

Introduction As part of App Service Certificate (ASC) offering, we now support certificate deployment through Azure Key Vault (AKV). ASC stores the private certificate into a user provided Key Vault Secret (KVS). When an ASC is deployed into a Web App, Web App Resource Provider (RP) actually deploys it from the KVS associated with ASC….


Microsoft SQL Replication Between Windows Azure Virtual Machines

Chris Skorlinski Microsoft SQL Server Escalation Services You can use SQL Server Replication technologies to move data between local on premises SQL Server to SQL Server running in Windows Azure Virtual Machines or between Windows Azure Virtual Machines.  Similar to move data between non-trusted corporate domains, keys are 1) use SQL Server Authentication and 2)…


Secure channel compatibility support with SSL and TLS

This article has been moved to its new home here: https://benperk.github.io/msdn/2011/2011-10-secure-channel-compatibility-support-with-ssl-and-tls.html I wrote 2 previous blogs about NTLM and Negotiate/Kerberos which discussed briefly about how those authentication packages work within the context of Integrated Windows Authentication. Another authentication package supported in Windows is called Secure Channel, also known as Schannel.  This blog will not discuss…


Distribution Agent fails with “Could not remove directory” error

Distribution Agent fails with “Could not remove directory” error Sateesh Yele Microsoft SQL Server Support Symptom: The Distribution Clean up job fails with the following error. Executed as user: DomainnameUsername. Could not remove directory ‘C:Program FilesMicrosoft SQL ServerMSSQL10_50.MSSQLSERVERMSSQLReplDataunc’. Check the security context of xp_cmdshell and close other processes that may be accessing the directory. [SQLSTATE…