Windows server – Sempati Kopek Oteli http://sempatikopekoteli.com/ Fri, 13 May 2022 14:18:45 +0000 en-US hourly 1 https://wordpress.org/?v=5.9.3 https://sempatikopekoteli.com/wp-content/uploads/2021/11/icon-30-120x120.png Windows server – Sempati Kopek Oteli http://sempatikopekoteli.com/ 32 32 Windows Server Administrators Say Latest Patch Tuesday Violated Authentication Policies https://sempatikopekoteli.com/windows-server-administrators-say-latest-patch-tuesday-violated-authentication-policies/ Thu, 12 May 2022 11:59:29 +0000 https://sempatikopekoteli.com/windows-server-administrators-say-latest-patch-tuesday-violated-authentication-policies/ IT administrators are reporting authentication issues after installing the latest May 2022 Patch Tuesday security updates, released this week. Online discussions suggest that a number of companies are having issues, especially those that installed the updates on Windows servers that also serve Active Directory Domain Controller (DC) and Certificate Services roles. (ACDS). According to some […]]]>

IT administrators are reporting authentication issues after installing the latest May 2022 Patch Tuesday security updates, released this week.

Online discussions suggest that a number of companies are having issues, especially those that installed the updates on Windows servers that also serve Active Directory Domain Controller (DC) and Certificate Services roles. (ACDS).

According to some admins, Network Policy Server (NPS) policies were reported as failing, returning an error that “authentication failed due to user credential mismatch”. Either the username provided does not match an existing account or the password was incorrect.

Others said their Windows server, which only served the DC role, not the ACDS role, was having the same issues with failed NPS policies. Removing update KB5013941 would have fixed the issue.

One person reported that in his environment he was running separate servers for DC and NPS, and came to the conclusion that NPS servers may be patchable, but DC servers may need to roll back the update, after have tested the updates on each.

“For your information, we are aware of the NPS problem”, mentioned Steve Syfuhs, senior software engineer specializing in cryptography, authentication and identity at Microsoft. “It’s not specifically related to NPS, but rather how we distinguish between different types of names in certificates. Only a subset of people are affected by this.

Syfuhs addressed users in a separate Twitter chat and confirmed that Microsoft is looking into issues reported by many IT admins.

“After installing the updates released on May 10, 2022 on your domain controllers, you may see authentication failures on the server or client for services such as Network Policy Server (NPS), Routing and Remote Access Service (RRAS), Radius, Extensible Authentication Protocol (EAP), and Protected Extensible Authentication Protocol (PEAP),” Microsoft said in an issues document. “An issue related to how the mapping of certificates to machine accounts is managed by the domain controller has been detected.”

The issues currently facing Windows Server administrators are due to how Microsoft patched two “high severity” privilege escalation vulnerabilities, tracked as CVE-2022-26931 and CVE-2022-26923, during the serial of Tuesday’s monthly security patches.

Online discussions in the first hours after the security patches were released seemed to show that users could apply updates without issue, only for Windows Server issues to surface later.

Related Resource

Securing endpoints against new threats

Ensure employees have the flexibility and security needed to work remotely

Free download

Earlier this year, many Windows Server administrators collectively agreed to forgo Microsoft-issued security patches, citing numerous issues that caused operational disruptions so severe they thought it best not to be protected from security patches rather than updating and applying workarounds.

Microsoft has released a recommended mitigation for admins who want a workaround for the certificate issue but don’t want to roll back the latest update like others have already done, leaving themselves unprotected.

The workaround is to manually map certificates to a machine account in Active Directory, Microsoft said. If the recommended mitigation does not work, administrators are encouraged to review the associated support document for other potential methods to resolve the issues they encounter.

Featured Resources

How to Run More Productive Meetings

Tips and tricks to get the most out of your meetings

Free download

Enable the future of work with integrated, real-time communication

A new dimension of human interaction is coming to digital work

Free download

How to do a hybrid job well

Overcoming the Challenges of Transitioning to Hybrid Working

look now

HPE HCI 2.0: How it can help your business thrive

Why SMBs Need to Accelerate Digital Transformation with HCI

Free download

]]>
Windows Server 2012 R2 End of Life: What is “Extended Support” https://sempatikopekoteli.com/windows-server-2012-r2-end-of-life-what-is-extended-support/ Thu, 05 May 2022 13:07:20 +0000 https://sempatikopekoteli.com/windows-server-2012-r2-end-of-life-what-is-extended-support/ Windows Server 2012 R2 End of life deadline (October 10, 2023) is almost there. After this date, Windows Server 2012 and 2012 R2 will stop receiving regular patches or critical security updates, making their security and compliance a top concern. As the upgrade process often takes over a year, we urge users not to delay […]]]>

Windows Server 2012 R2 End of life deadline (October 10, 2023) is almost there. After this date, Windows Server 2012 and 2012 R2 will stop receiving regular patches or critical security updates, making their security and compliance a top concern.

As the upgrade process often takes over a year, we urge users not to delay the transition any further. Microsoft recommends the latest rolling version, which for Windows Server 2012 or 2012 R2 would be Windows Server 2019.

The article below discusses standard and extended support, end of support, what to do if you need to continue using Windows Server 2012/2012 R2 after end of life, and Moreover.

What is Extended Support? What does end of support mean?

Windows Server 2012 and 2012 R2 follow the fixed lifecycle policy, where Microsoft provides 5 years of mainstream support and 5 years of extended support.

A product receives everything types of updates and support during the Mainstream Support Period, while during the Extended Support Period it stop receiving non-security updates. After the end of the extended support period, a product reaches the final stage, i.e. the end of support.

If needed, users can subscribe to a premium plan called Extended Security Update to continue receiving updates and support for up to 3 years after the end of the extended support period. But for those who do not participate in this program, there will be no patches or security updates once the product reaches end of support.

General public support

The Mainstream Support phase refers to the first 5 years of a product’s lifecycle. During this period, the product receives feature updates, security patches, and service packs. Users can also request non-security updates, incident support, or product feature changes.

For Windows Server 2012 R2, the main support phase ran from 2013-11-25 to 2018-10-09.

Extended support

The Extended Support phase refers to the last 5 years of a product’s lifecycle. During this period, a product only receives security updates and users can no longer request new design changes or non-security updates.

Windows Server 2012 R2 is currently in Extended Support.

End of support

As noted, once a product reaches the end-of-life phase, Microsoft will stop providing most forms of updates and support for it, making it a security risk.

For customers who are still in the upgrade process or those who need to continue using legacy products, Microsoft offers one final option: the Extended Security Update (ESU) program.

The end of life date for Windows Server 2012 R2 is 10/10/2023.

Extended Security Update (ESU)

ESU is essentially a premium plan where users will continue to receive critical security updates until 3 years after the end of the extended support phase. If you choose to migrate to Azure, you will receive these updates for free.

But for those running Windows Server on-premises, you’ll need to purchase Extended Security Updates every year. The corresponding cost will correspond to a certain percentage of the cost of the latest version of Windows Server, as shown in the table below.

Year Start date End date Price
Year 1 Extended Security Update October 11, 2023 October 8, 2024 75% of license cost
Year 2 Extended Security Update October 9, 2024 October 14, 2025 100% of license cost
Year 3 Extended Security Update October 15, 2025 October 13, 2026 125% of license cost

the Upside down to this plan is that you won’t have to worry about your server security during the transition, and as you upgrade parts of your server, you won’t need to keep paying for it year round next.

On the other hand, the inconvenience is that if you opt for this plan late (2nd or 3rd year), you will also have to pay for the updates of the previous years.

For any other questions, we recommend visiting Microsoft’s Extended FAQ page, Extended Security Updates and Windows Server 2012 End of Support FAQ.

Which version of Windows Server should you upgrade to?

Windows Server can be upgraded through a maximum of two versions. The latest evolutionary release for Windows Server 2012 R2 is Windows Server 2019.

Why can’t I continue to use Windows Server 2012 R2?

As mentioned, once Windows Server 2012 and 2012 R2 reach the EOL phase, they will no longer receive critical security updates. This places them at a increased risk of cyberattacks and non-compliance. The option to receive a few more years of security updates comes at a premium.

To add to this, newer versions like Windows Server 2019 and 2022 simply offer way more features and better performance.

And if you’re still not convinced to move away from Windows Server 2012 R2, this article on exploiting vulnerabilities might change your mind.

How to upgrade Windows Server 2012 R2 to Windows Server 2019?

There are many ways to deploy a new Windows server. But when we talk about upgrading, we are specifically talking about a in-place upgrade. An in-place upgrade is the best option for most people because you can upgrade while keeping the same hardware and configurations.

server-configuration-windows-2019

We recommend reading Windows Server 2012 R2 through 2019 for detailed instructions on what to do before, during, and after the upgrade process.

]]>
Microsoft releases KB5010421 for Windows Server 2022 in preview https://sempatikopekoteli.com/microsoft-releases-kb5010421-for-windows-server-2022-in-preview/ Wed, 04 May 2022 01:45:27 +0000 https://sempatikopekoteli.com/microsoft-releases-kb5010421-for-windows-server-2022-in-preview/ Besides Cumulative Updates KB5010414 for Windows 11 Preview, KB5010415 for Home Windows 10 Version 20H2, 21H1 and 21H2 Preview and KB5010427 for Windows 10 Version 1809 Preview, Microsoft also unveiled a new Cumulative Update for Home Windows Server 2022 onward -first. went out last night. Non-security update KB5010421 incorporates bug fixes and advancements: Microsoft lists […]]]>

Besides Cumulative Updates KB5010414 for Windows 11 Preview, KB5010415 for Home Windows 10 Version 20H2, 21H1 and 21H2 Preview and KB5010427 for Windows 10 Version 1809 Preview, Microsoft also unveiled a new Cumulative Update for Home Windows Server 2022 onward -first. went out last night. Non-security update KB5010421 incorporates bug fixes and advancements: Microsoft lists various bugs in the background of the update that are fixed by this update. You can find a list of fixed and unresolved issues in KB5010421 at Microsoft. As usual, the official release notes preview gives a full overview of all the improvements. The update provides Windows Server 2022 OS Make 20348.558 and can now be downloaded using Home Windows Update or Microsoft Update Catalog. To download and install the update, go to Options › Update & stability › Windows Update and select checking for updates Yes Get and install now outside. To use this update, August 10, 2021 update KB5005039. Many more facts about this update can be found at or by Microsoft.

Download -> Get Update KB5010421 for Windows Server 2022

Simply click below to download KB5010421 for Windows Server directly from Microsoft:

February 15, 2022 — KB5010421 (OS Make 20348.558) Preview

The update features the following improvements and bug fixes:

  • This unprotected update includes high quality improvements.
  • Windows 10 Servicing Stack Update: 20348.557 – This update improves the good quality of the servicing stack, which is the part that installs Windows updates. Servicing Stack Updates (SSU) ensure that you have a robust and reliable servicing stack so that your units can obtain and install updates from Microsoft.

February 2022 non-security “C” preview release available for Windows Home

The February 2022 Unstability Preview is now available for Windows Home 11 and other supported versions of Windows. For information and facts about the written content of this update, see the release notes, which are easily accessible from the Windows 11 and 10 update history web pages.

Much more information and facts about KB5010421 for Windows Server 2022 can be seen from Microsoft.

via Update Legacy for Windows Server 2022

]]>
After the massive WannaCry attack, Microsoft condemns spy agencies https://sempatikopekoteli.com/after-the-massive-wannacry-attack-microsoft-condemns-spy-agencies/ Tue, 03 May 2022 05:09:10 +0000 https://sempatikopekoteli.com/?p=1994 Microsoft chastised intelligence agencies for their participation in the WannaCry virus, which devastated hundreds of thousands of systems across the globe, comparing the loss of the NSA hacking tools that made it possible to “the United States military having some of its Tomahawk missiles stolen.”  In doing so, Microsoft questioned the government’s habit of storing […]]]>

Microsoft chastised intelligence agencies for their participation in the WannaCry virus, which devastated hundreds of thousands of systems across the globe, comparing the loss of the NSA hacking tools that made it possible to “the United States military having some of its Tomahawk missiles stolen.” 

In doing so, Microsoft questioned the government’s habit of storing zero-day vulnerabilities, a kind of malware that may have disastrous implications if it falls into the wrong hands.

What was WannaCry’s asking price?

The ransom demand was insignificant by today’s standards. Only $300 per infected device, with the fee increasing to $600 if not paid after three days. Because the transactions are logged on the blockchain, it is possible to know how many payments were made. If you really need money now to pay the asking price, then you may apply for a loan. It is for emergency use only.

A Call to Action

In a sharply worded business blog post, Microsoft president Brad Smith stated, “This assault gives yet another illustration of why governments collecting vulnerabilities is such a concern.” 

“We’ve seen CIA vulnerabilities appear on Wikileaks, and now a weakness stolen from the National Security Agency has impacted clients all across the globe.” Exploits in the hands of governments have often spilled into the public sphere, causing widespread harm.”

He went on to say that the current ransomware assault should serve as a “wake-up call” to governments all over the globe, reminding them that they must “adhere in cyberspace to the same norms that apply to weapons in the real world.” Smith, also Microsoft’s chief legal officer, used the opportunity to renew his plea for a Digital Geneva Convention on cyber warfare, which he first proposed in February at the RSA security conference. 

“The time has come for the world’s countries to join together, reinforce international cybersecurity standards that have formed in recent years, create new and enforceable laws, and get to work implementing them,” he said at the time.

To protect civilian internet use, Microsoft’s proposed Digital Geneva Convention would require governments to report vulnerabilities to vendors rather than stockpile, sell, or exploit (or lose) them, similar to how the Fourth Geneva Convention provided a set of rules governing the treatment of civilians in wartime following World War Two.

WannaCry was a ransomware attack that spread over the internet.

Last Friday, the WannaCry ransomware outbreak (also known as WannaCrypt, Wana Decryptor, or WCry) started in the United Kingdom and Spain and quickly expanded to dozens of other countries. WannaCry uses an NSA-created vulnerability nicknamed “EternalBlue,” which was disclosed together with other NSA hacking tools by the Shadow Brokers in April. It uses a flaw in Windows software to lock down victims’ files, then presents them with a ransom letter demanding $300 or $600 in Bitcoin in return for access to be released.

It’s worth mentioning that Microsoft released a security fix for this same flaw in March. On the other hand, thousands of users failed to upgrade their systems promptly. 

The capacity of WannaCry to seek out weak devices and disseminate itself inside a computer network like a worm, along with users’ and businesses’ casual attitude toward security, prepared the stage for Friday’s hack to grow and expand at an unprecedented scale.

WannaCry has infected at least 300,000 computers as of last count, devastating hospitals, transportation networks, and government organizations in over 150 nations. 

FedEx, Russia’s interior ministry, Telefonica, a prominent Spanish telecoms operator, and the UK National Health Service are high-profile victims. 

WannaCry lingers in Europe and continues to hit new targets in Japan and China, where the popularity of pirated Windows software has left computers especially vulnerable, according to NPR.

While its advance slowed significantly over the weekend due to a happy accident (detailed below), WannaCry lingers in Europe and continues to hit new targets in Japan and China, where the popularity of pirated Windows software has left computers especially vulnerable.

Despite its worrying spread, WannaCry has proved to be ineffective at obtaining ransom money and poorly constructed. According to Wired, the hackers have so far collected an estimated $55,000 — a pittance in comparison to the worldwide magnitude of their internet-shattering onslaught – owing to flaws in WannaCry’s ransom capabilities. 

Another unexplained blunder by the hackers was the inclusion of an Achilles heel in their code, which was accidentally activated by a researcher named MalwareTech. MalwareTech discovered when reverse-engineering WannaCry that the ransomware was intended to ping a specific gibberish URL to see whether it was running. 

He paid roughly $10 to register that domain name, which immediately impacted deactivating the WannaCry strain and saving tens of thousands of PCs. Because of the inefficiencies above, several security experts are asking whether the WannaCry hackers were motivated by political goals (such as humiliating the NSA) rather than monetary gain. However, WannaCry’s ability to self-propagate implies that such assaults will become more common in the future, maybe spurred by more skilled cybercriminals looking for a greater reward. 

As expected by security experts, WannaCry has already spawned a slew of copycats. On Monday, Check Point, a cybersecurity company, disclosed the identity of a new WannaCry version that was spreading at a pace of around one machine per second. Thankfully, that variation also included a similar built-in “kill switch” that Check Point could engage in terminating.

]]>
Windows Server Hybrid Administrator Certification Guide https://sempatikopekoteli.com/windows-server-hybrid-administrator-certification-guide/ Fri, 29 Apr 2022 20:47:59 +0000 https://sempatikopekoteli.com/windows-server-hybrid-administrator-certification-guide/ IT pros with one foot on the premises and one foot in the Microsoft cloud now have a tailored certification to prove their Windows Server expertise in both environments. Administrators who manage Windows Server systems and want to demonstrate their understanding of Microsoft’s server operating system will want to study the Windows Server Hybrid […]]]>

IT pros with one foot on the premises and one foot in the Microsoft cloud now have a tailored certification to prove their Windows Server expertise in both environments.

Administrators who manage Windows Server systems and want to demonstrate their understanding of Microsoft’s server operating system will want to study the Windows Server Hybrid Administrator Associate certification. A Microsoft certification is an asset for IT professionals to prove their skills to potential employers or to meet their current organization’s requirements or initiatives. In addition to real-world experience, a Microsoft certification gives IT professionals a way to establish their skills and experience. As such, Microsoft certifications are widely considered a worthwhile investment.

The Evolution of Microsoft Certifications

The Microsoft Certification program has been around for decades, but it has evolved significantly in recent years. For most of its history, Microsoft certifications were tied to specific Microsoft products. At one time, for example, Microsoft’s most basic certification was the Microsoft Certified Professional (MCP) certification, which typically demonstrated proficiency with a single Microsoft product such as Windows.

Other certifications aimed to document a solid understanding of products that were somehow related to each other. For example, in the 1990s, Microsoft offered a Microsoft Certified Systems Engineer (MCSE) certification that required candidates to pass a series of six exams. One of the reviews was on general networking, but the other five were product-related. Over time, Microsoft phased out the MCSE certification, although it later returned in a new form, and created other multi-exam certifications such as the Microsoft Certified Solutions Developer (MCSD) and Microsoft Certified Solutions Associate (MCSA).

More recently, Microsoft has aligned its certification programs with job functions rather than products. Microsoft is now gearing its certification programs towards different technical roles, including developers, administrators, data scientists, and DevOps engineers. With this approach, candidates focus on the skills they need for their job – or a job they want – instead of learning how every product feature works, even if there are no lucky that they use this functionality in their field of work.

Windows Server Hybrid Administrator Associate Certification Requirements

As indicated by the hybrid designation, candidates for the Windows Server Hybrid Administrator Associate certification will be required to deploy and manage cloud services used in the data center and infrastructure-as-a-service (IaaS) workloads that use Azure for various cloud-based jobs, such as storage or load balancing.

Candidates will have to pass two tests to obtain this certification which proves their aptitude in several areas related to the implementation and administration of Windows Server, both on premises and in the cloud:

  • AZ-800: Windows Server Hybrid Core Infrastructure Administration
  • AZ-801: Configuring Windows Server Hybrid Advanced Services

The AZ-800 test focuses on the fundamentals of Windows administration: virtualization, storage, networking, and Active Directory.

The AZ-801 test covers more advanced topics related to disaster recovery, high availability, migration, monitoring, security, and troubleshooting.

Each exam covers on-premises aspects that Windows Server administrators typically deal with, such as domain controller deployment and management in the data center, and hybrid configurations that can mitigate certain challenges. For example, a company might have a situation where an application is hosted both in Azure and on-premises; the administrator will need to know how to replicate the domain controller in the Microsoft cloud to reduce latency issues.

How to Prepare for the AZ-800 and AZ-801 Exams

While it’s possible to read a book and take a certification exam without actual knowledge of a product, exams will be easier if you practice the various skills in a lab environment without significant financial investment.

You can evaluate Windows Server 2022 for free from the Microsoft Evaluation Center for 180 days. Microsoft also offers a 12-month free trial of the Microsoft Azure cloud platform.

One of the most important steps in preparing for any Microsoft certification exam is to familiarize yourself with the exam’s skill map. The AZ-800 and AZ-801 exam pages on the Microsoft site contain links to the exam skills map, which is a list of areas to be mastered for the exam. You won’t necessarily get a question for every skill on the list, but you should expect to see most items on the exam.

Studying is another essential part of preparing for any certification exam. Microsoft offers free online learning resources for many of its certification exams, but they tend to lack depth. To be fully prepared for the exam, you will most likely need additional study resources. There are also other study aids available for free online, on sites such as YouTube.

For paid study resources, there are several options, but there may not be many for AZ-800 and AZ-801 as they were made generally available in December. Paid study resources include instructor-led training, video tutorials, books, and practice exams.

Microsoft has strict rules regarding the types of study resources to prepare for its exams. The company will invalidate a certification if it finds that the candidate has used a resource with real exam questions, such as so-called “brain dump” sites or practice exams from dubious sources.

Understand the Windows Server Hybrid Administrator Associate certification process

Once you have prepared for the Windows Server Hybrid Administrator Associate certification exams, the next step is to register for the tests. Exams are usually administered at an approved test center and require candidates to present government-issued identification. Once you pass the two required exams, Microsoft will award you the certification and attach it to your profile in Microsoft’s certification dashboard.

There is a fee to take a Microsoft certification exam. These fees vary by country, but in the United States the fee is generally $165 per exam. Occasionally, Microsoft will offer exam discounts as part of a promotional offer. For example, Microsoft issued free certification vouchers and also offered discounted exams at its Ignite conference.

What is the Windows Server Hybrid Administrator Associate certification renewal process?

Microsoft role-based certifications, such as the Windows Server Hybrid Administrator Associate certification, are valid for one year from the date the required final exam is passed.

To keep the certification active, you will need to complete a renewal assessment before the expiration date. There is no cost for a renewal exam, which is the only accepted method of keeping certification current. You cannot renew a certification by passing the latest version of an exam required for the initial certification.

]]>
Microsoft plans to release Windows Server updates like Windows Update https://sempatikopekoteli.com/microsoft-plans-to-release-windows-server-updates-like-windows-update/ Wed, 27 Apr 2022 15:03:13 +0000 https://sempatikopekoteli.com/microsoft-plans-to-release-windows-server-updates-like-windows-update/ Microsoft is reportedly considering releasing previews of Windows Server to customers the same way it does regular Windows Insider builds. At the moment, both sides of Windows have different update policies, even though they follow similar release patterns. Microsoft may be looking to change that. When I say update pattern, I mean that both Windows […]]]>
Windows-Server-Servers-Microsoft