How to Improve Network Efficiency with Delivery Optimization and Endpoint Configuration Manager

Can Microsoft’s Delivery Optimization and Configuration Manager help solve enterprise network efficiency problems supercharged by the coronavirus pandemic? The COVID-19 pandemic has forced numerous companies to adopt hybrid working models. This has seen demand for bandwidth capacity increase considerably. Couple bandwidth-busting traffic connecting from all over with spiraling data costs and network administrators have something to worry about. With no end in sight of this global pandemic, enterprises are now looking for solutions to counter these issues. As a result, the question that’s now at the fore for many network administrators is how to improve network efficiency as cost-effectively as … Continue reading

Should You Allow Self-Service With Windows Autopilot?

With Windows Autopilot, Microsoft gives clients a collection of technologies designed to eliminate the challenges that come with building, maintaining, and applying custom images. It’s a platform that IT professionals can utilize to set new desktops to join pre-existing configuration groups and apply profiles to the desktops. All of this is so that new users can access fully functional desktops from their first logon. By using Windows Autopilot, you can simplify the entire lifecycle of Windows devices. Meaning that it covers devices from the initial deployment through to the eventual end of the life cycle. The question, however, is should … Continue reading

Controlling User App Access With AppLocker

Most organizations could probably gain some benefits from deploying application control policies. This is something that your IT guys could use to make their work easier and improve the overall management of employee devices. AppLocker is a platform that will give admins control over which apps and files users can run including packaged app installers, scripts, executable files, Windows Installer files, DLLs, and packaged apps. Because of its features, AppLocker will help organizations to reduce their admin overhead and the cost of managing computer resources. With that said, let’s go over how AppLocker helps you to control user app access. … Continue reading

Windows 10 Registry tweak to disable Microsoft Edge Icon for MDT or ConfigMgr

The icon for Microsoft Edge is now placed by default in every user profile. It is not placed in Public Desktop, but created for each user at logon (DOH!) Thank god there is way to stop this behavior. You can simple add the following registry key: Key: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer Value: DisableEdgeDesktopShortcutCreation Data: 1 Type: REG_DWORD If your using MDT (Microsoft Deployment Toolkit) or ConfigMgr (System Center Configuration Manager) You can add the following oneliner task sequence step, to stop the creation of the Microsoft Edge icon. Commandline: reg.exe add HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer /v DisableEdgeDesktopShortcutCreation /t REG_DWORD /d 1 In case your wondering what … Continue reading

Protect Yourself Against Petya Ransomware

The malware requires administrator rights to the local computer. Standard users should not have this in permission. Consider restricting who has local admin rights to prevent execution of exploit code within organisations. Home users should also consider using a Standard User Account for day-to-day operations. Access Director can help you by removing permanent local admins. Recommendations for Enterprises Deploy the latest Microsoft patches, including MS17-010 which patches the SMB vulnerability. Consider disabling SMBv1 to prevent spreading of malware. Educate end-users to remain vigilant when opening attachments or clicking on links from senders they do not know. Ensure you have the … Continue reading

Windows 10 hangs after patches May/17 (Windows Defender & Trend Micro)

There seems to be an issue with Trend Micro and Windows Defender after Windows/ Defender patches has been applied. The quick workaround is to deploy are registry key: HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender The dword value should be 1: DisableAntiSpyware In case it does not exist, go ahead and create it. Restart and you should see things start working again. If you have the issue, you should be able to deploy it using Group Policy Preferences. NOTE: You can also enter safe mode and create the needed key. Reference links: https://technet.microsoft.com/en-us/library/cc749126(v=ws.10).aspx https://docs.microsoft.com/en-us/windows/threat-protection/windows-defender-antivirus/deploy-manage-report-windows-defender-antivirus https://support.microsoft.com/en-us/help/12376/windows-10-start-your-pc-in-safe-mode