0

Unable To Access OWA Externally Via WAP 2025 – Still Working On It

Posted on by Rhoderick Milne [MSFT]
Unable to Access OWA via WAP 2025 - Still Working On It

After upgrading Web Application Proxy (WAP) to Windows Server 2015 you may run into an issue with certain applications that are published via WAP to the Internet.  This issue will also happen if you build a net new environment for both WAP 2019 and newer.  This post discusses WAP 2025, but the same is more than likely going to happen with WAP 2022

In the below example the AD FS upgrade went well wi… Read the rest “Unable To Access OWA Externally Via WAP 2025 – Still Working On It”

0

SPF Record Fun

Posted on by Rhoderick Milne [MSFT]
SPF Record Structure

Sender Policy Framework (SPF) is a fundamental component of modern e-mail authentication, designed to reduce the risk of spoofing and phishing attacks. By publishing a DNS record that specifies which mail servers are authorised to send messages on behalf of a domain, SPF allows receiving systems to validate whether an incoming message genuinely originates from the claimed sender. SPF alone does no… Read the rest “SPF Record Fun”

0

Entra SSPR Failing–Unexpected Error During A Set Password Operation

Posted on by Rhoderick Milne [MSFT]
Entra SSPR - Unable to Reset Password

On-premises users were unable to use Entra SSPR to reset their passwords.  This needs to use the Password Writeback feature, and in this case Entra Connect was used.  Nowadays there is also Entra Cloud Sync, but that was not an option for this customer.  Users were able to access the SSPR page at https://aka.ms/SSPR and successfully go through all of the steps of the wizard.  This included the CAPT… Read the rest “Entra SSPR Failing–Unexpected Error During A Set Password Operation”

0

Exchange Server SE Installation & Upgrade Screenshots

Posted on by Rhoderick Milne [MSFT]
Exchange Sever SE Installation Screenshots

In this post we’re capturing a point-in-time reference of the Exchange Server Subscription Edition installation process. As Microsoft continues to evolve Exchange with its subscription-based model, setup screens, prerequisites, and configuration options may change over time. The goal here isn’t to walk through the steps in detail, but simply to document what the installation experience looks like … Read the rest “Exchange Server SE Installation & Upgrade Screenshots”

0

QuickTip – Use WIM File As DISM Repair Source

Posted on by Rhoderick Milne [MSFT]
DISM Mount for WinSXS Repair

The Windows servicing stack relies heavily on the WinSxS (Windows Side-by-Side) component store, which houses all the system files, manifests, and metadata required to service, patch, and maintain the operating system. Corruption within this store can manifest as persistent update failures, integrity check errors, or an inability to apply new servicing operations. Traditional file-level repair met… Read the rest “QuickTip – Use WIM File As DISM Repair Source”

0

QuickTip – Capture Network Without Installing Wireshark

Posted on by Rhoderick Milne [MSFT]
Converted ETL To Wireshark

Wireshark is the industry tool for packet inspection, but you don’t always want, or are able, to install this onto production systems without a change request.  Whether you’re troubleshooting or investigating an issues, there are alternative ways to capture meaningful network traffic without installing Wireshark.  Ultimately we want to produce PCAPs easily without having to mess with switchport mi… Read the rest “QuickTip – Capture Network Without Installing Wireshark”

0

Defender for Cloud Apps Access Policy Not Applied to Desktop Applications

Posted on by Rhoderick Milne [MSFT]
Defender for Cloud Apps Managing Desktop Applications

In today’s hybrid work environment, securing access to cloud applications is more critical than ever.  Microsoft Defender for Cloud Apps offers a powerful way to enforce granular access controls using different policies.  Organisations want to ensure that only authorised and compliant devices can access sensitive cloud resources.  Requiring device compliance can be achieved with Intune as an MDM a… Read the rest “Defender for Cloud Apps Access Policy Not Applied to Desktop Applications”

0

Migrating to New Entra ID Authentication Methods

Posted on by Rhoderick Milne [MSFT]
Migrate to Entra Authentication Methods

On September 30th, 2025, the legacy multifactor authentication (MFA) and self-service password reset policies will be removed and you'll manage all authentication methods here in the authentication methods policy. Use this control to manage your migration from the legacy policies to the new unified policy. Learn more

Traditional Azure Multi-Factor Authentication has served organizations well for ye… Read the rest “Migrating to New Entra ID Authentication Methods”

0

TLS Web Services Support On Exchange Server 2019 CU14 vs CU15

Posted on by Rhoderick Milne [MSFT]
Exchange Server 2019 CU15 TLS Scan Results

Transport Layer Security (TLS) has always been a critical component of securing communications in Microsoft Exchange Server, ensuring confidentiality and integrity of email traffic both internally and externally. With Exchange Server 2019, Microsoft has steadily evolved TLS support to align with modern security standards and deprecate older, weaker protocols. A notable shift came between CumulativRead the rest “TLS Web Services Support On Exchange Server 2019 CU14 vs CU15”

0

Quick Tip–Verify Which Hyper-V VMs Have ISO Mounted

Posted on by Rhoderick Milne [MSFT]
Use PowerShell to Easily Show All Mounted ISO

It’s very common that we mount ISO files when needed, then forget to remove them after the fact.

This is generally a non issue until you want to move the mounted ISO file as Hyper-V may have a lock on the file.  Yes we could open up the properties of each VM in the console, but nope.  Not doing that.

Rather than search VMs one by one to see which is the offending VM, just run the below command in Po… Read the rest “Quick Tip–Verify Which Hyper-V VMs Have ISO Mounted”