PowerShell script to convert WDAC XML file to binary CIP format
Andrew The Microsoft WDAC Wizard is a great tool for building and modifying WDAC policies, but there are times where it is necessary to manually modify the policy XML file. If…
Logic App security tips – Using a Key Vault
Logic Apps are amazingly powerful in what can be accomplished, and have a very low barrier to entry with their code-less approach, however care needs to be take to ensure…
#TIL converting a JSON date from a Dynamics 365 Business Event in a Logic App
While building a Logic App to perform actions based on business events in Dynamics 365, I faced a slight challenge – one of those challenges can sometimes be tricky in…
Generating a log file for an MSI or MSP
Recently when completing a MIM 2016 hotfix installation the upgrade process was failing with a very generic and largely unhelpful error message. It’s possible (and in the case of MIM…
Check when attributes were updated in Active Directory
I recently needed to determine when an attribute was updated by MIM in Active Directory for a particular user object. MIM itself provides details within Metaverse search to determine when…
TIL: Finding the location of a user’s desktop folder in PowerShell
In developing a script that drops the output file to a user’s desktop it begs the question – what is the best way to determine the full path to the…
Microsoft MFA with number matching
Multi-factor authentication (MFA) is critically important for securing accounts and limiting the risk of accounts being compromised. However one of the weaknesses of push based MFA, such as push notifications…
Bulk load devices to Azure AD Group
Recently I’ve been needing to put into Azure AD Groups large numbers of device objects and it turns out you can’t easily use the out of the box tools in…
Exchange Online DNS validator
Recently in doing a migration project to Exchange Online Protection (for a large number of domains) it was necessary on a regular basis to make changes to DNS records, and…
WDAC 3033 error workarounds
On a Windows Defender Application Control (WDAC) project one issue you may encounter is driver .dll or .sys files that are digitally signed, but the certificate has now expired. The…