Windows Server version 1709 is now available for download

Although in recent discussions people mentioned they’re not that exited anymore about new releases of Windows Server, a new version of this Microsoft product for your datacenter has arrived yesterday.

Recently, I discussed the features I was looking forward to a pre-release version of this Windows Server release from an Identity and Access Management (IAM) point of view. Of course, all these features are available, plus many more.

What’s New

Windows Server, version 1709, is the first release of Windows Server that delivers innovation for your applications and infrastructure faster. As part of the new Sami-annual Channel cadence, this release is designed to help modernize your applications, bring new levels of efficiency to your datacenter and streamline your transition to the cloud. Advancements include a dramatically smaller Nano Server container image optimized for .NET Core, the Windows Subsystem for Linux, support for new hardware innovations like Storage Class Memory, encrypted network segments, Linux Shielded CMs, and many more.

A complete overview of What’s New can be found here.

One of the things that is not that obvious, is that Windows Server, version 1709 is only available as a Server Core installation and as a Nano Server installation. The new management experience for Windows Server version 1709 is project Honolulu.

Some other features that have been part of pre-release versions of this Windows Server release, however, are not available. The release notes for Windows Server, version 1709, specifically mention:

Storage Spaces Direct

Storage Spaces Direct is not included in Windows Server, version 1709. If you call Enable-ClusterStorageSpacesDirect or its alias Enable-ClusterS2D, on a server running Windows Server, version 1709, you will receive an error with the message “The requested operation is not supported”.

It is also not supported to introduce servers running Windows Server, version 1709 into a Windows Server 2016 Storage Spaces Direct deployment.

Last but not least, running Windows Server version 1709 in your own on-premises production environment requires active Software Assurance. 

Version information

Windows Server version 1709 has build number 10.0.16299.15, but after installation of the October Cumulative Update, the version you’ll see is version 10.0.16299.19.

How to get Windows Server version 1709

Download

You can download Windows Server version 1709, when you’re subscribed to MSDN. MSDN subscription can be bought as an add-on to Developer Tools, like Visual Studio.

Of course, another way to get access to Windows Server version 1709 and Product Keys is to use the Volume Licensing Service Center (VLSC).  Access to this portal comes with Software Assurance in the Microsoft Volume Licensing programs. Software Assurance consists of 31 advantages, but the most relevant one in the context of this blogpost is the next version right. When an organization purchases Windows Server with Software Assurance, this organization gains the right to run Windows Server version 1709. You can download it now.

If you’re a Microsoft Partner, you can also get access to Windows Server version 1709. If your organizations employs at least two Microsoft certified professionals, can cough up three customer references and around $ 1500 per year, your organization can become a Microsoft Partner with a Silver Competency and enjoy all Microsoft software for production, testing and training purposes for free. (restrictions apply) If your organization doesn’t qualify for a competency, then you can become a registered member of the Microsoft Partner Community and purchase the Microsoft Action Pack. The Community membership is free for organizations. The Action Pack will set your organization back $ 329 per year. The MSDN Portal would be the portal where all the action is in terms of Windows Server version 1709.

Evaluation versions of Windows Server, version 1709, are expected to arrive somewhere this week.

Azure Infrastructure as a Service

When downloading bits sounds archaic to you, you can also spin up Windows Server-based virtual machines running Windows Server, version 1709 in Azure Infrastructure-as-a-Service (IaaS), starting somewhere this week.

 

Enjoy! Thumbs up

0  

I’m speaking at IT/DEV Connections 2017

Having presented at IT/DEV Connections in Las Vegas in 2015, I was delighted to be selected as a speaker for IT/DEV Connections 2017 in San Francisco.

For the fourth time, Penton Technology, who you probably know for its myITforum.com, WinSuperSite.com and WindowsITPro.com communities, organizes the US-based IT/Dev Connections event.

About this event

ITnDevConnections_logoWidely recognized for the depth and objectivity of its content, IT/Dev Connections training sessions teach developers and IT professionals the skills they need to do their jobs better.

Its speakers include the most knowledgeable and accomplished developers, technology experts, and strategists in the industry. Covering everything from Microsoft’s roadmap and strategy to detailed best practices, these hands-on experts take attendees through the entire planning and implementation process, providing specific guidance across all perspectives.

Its five tracks this year are Cloud and Datacenter, Data Platform and Business Intelligence, Enterprise Collaboration, Enterprise Management, Mobility and Security and, last but certainly not least, Development and DevOps.

IT/Dev Connections 2017 will be hosted at the Hilton Union Square in San Francisco, California, from Monday October 23rd 2017 to Thursday October 26th 2017. The agenda includes a full-day, hands-on pre-conference workshop on Monday, September 14th, and three days jam-packed with keynotes and breakout sessions. New this year is a Hackathon that runs throughout the event (starting Monday 8:30 PM) and hopes to provide solutions that answer the question ‘Can Alexa help keep your network secure?’.

About my sessions

I will be hosting one 75-minute session:

Achieving Productivity without an On-Premises Infrastructure: Mission Impossible?

Wednesday, October 25th 2017 11AM – 12:15PM, Room Continental 8

The daily announcements from Microsoft on cloud-based opportunities for organizations, might give you the idea that your organization might be able to achieve productivity without an on-premises infrastructure, too.

How do you, as a system administrator for a large organization, embrace these new possibilities and get rid of the square footage, cooling needs, firewalls and even your Domain Controllers? Can you go 100% cloud?

Dive into the full stack of Microsoft cloud possibilities and impossibilities. With my ‘Trust, but verify’ view on these items, I’ll share my real-life experiences with bringing organizations to the cloud, embracing a dual cloud provider strategy and the often-overlooked exit strategies you’ll need to have.

Find out why Group Policies, VPNs and typical file servers are rapidly becoming remnants of a long gone era in systems management and productivity. In the process, gain an end-to-end overview, featuring the latest and greatest Windows and Azure technologies to achieve the goals on your organizations horizon.

 

Additionally, I’ll be one of eight panellists on

Ask the Experts – Cloud & Data Center Track

Tuesday, October 24th 2017 4:30PM – 5:30PM, Room Continental 5

This is your chance to get all your questions answered before heading back to work from IT/Dev Connections 2017. Join this session to hammer our expert panel with your burning questions and solve your biggest issues.

It’ll be an interesting hour with Bert Wolters, Darren Mar-Elia, John Savill, Cameron Fuller, David O’Brien, Dieter Wijckmans and Martyn Coupland. I’m looking forward to it!

 

Join us!

Registration can be found here.

Tip!
When you register, use the code HACK250 at checkout and save $250.

0  

Join me for Lowlands Unite! Belgium Edition

Next week, on Thursday October 19, 2017, I’ll be delivering a 60-minute session on achieving productivity without an on-premises infrastructure at Lowlands Unite! Belgium Edition.

 

About Lowlands Unite!

Lowlands Unite! Belgium Edition

Lowlands Unite! is the joint event by the Dutch Windows Management User Group (WMUG) and the System Center User Group (SCUG) Belgium. As you might have learned in school, the two countries are often referred to as the low lands (in terms of sea level, not mood). The Dutch WMUG organized the first of the two full-day events and now it’s time for SCUG Belgium to show their worth.

For the location, SCUG choose the Lamot Conference and Heritage Center, a multi-functional and integrated event location, situated at the waterside in the historic city center of Mechelen. We’re turning this inspiring location into an excellent event location for October 19, 2017, with tasty food, great drinks, and, of course, excellent sessions.

The ten speaking slots are all filled with great sessions in the Enterprise Mobility Suite / Enterprise Client Management (ECM) track and the Azure / Operations Management Suite / Cloud and Datacenter Management (CDM) track. With several Microsoft MVPs and a Microsoft Program Manager, you’re bound to learn something.

 

About my session

I’m delivering one 60-minute session in the CDM track:

Achieving Productivity without an on-premises infrastructure: Mission Impossible?

The daily announcements from Microsoft on cloud-based opportunities for organizations might give you the idea that your organization might be able to achieve productivity without an on-premises infrastructure, too. How do you, as a system administrator for a large organization, embrace these new possibilities and get rid of the square footage, cooling needs, firewalls and even your Domain Controllers? Can you go 100% cloud?

Dive into the full stack of Microsoft cloud possibilities and impossibilities. With my ‘Trust, but verify’ view on these items, I’ll share my real-life experiences with bringing organizations to the cloud, embracing a dual cloud provider strategy and the often-overlooked exit strategies you’ll need to have. Find out why Group Policies, VPNs and typical file servers are rapidly becoming remnants of a long-gone era in systems management and productivity. In the process, gain an end-to-end overview, featuring the latest and greatest Windows and Azure technologies.

 

Join us!

Tickets for Lowlands Unite! Belgium Edition can be purchased through Eventbrite for 50 EURO, each. While the organization would love for you to indicate a preferred track (ECM or CDM), you can switch between the tracks at your own discretion.

There’s still time to join me, the other speakers, my fellow Dutch-speaking IT Pro Erik Loef and, of course, our sponsors. I’m being told it’s the only way to get your hands on one of those coveted Lowlands Unite! stickers, anyway.

Join us!

0  

Why installing Azure AD Connect on an Active Directory Domain Controller might not be the most brilliant of ideas

Azure AD ConnectWhen you read through Azure AD Connect’s prerequisites page, you’ll notice that Microsoft supports installing Azure AD Connect on Active Directory Domain Controllers.

While this would certainly be a helpful scenario for organizations with up to 50 user accounts, I would not recommend doing so.

Note:
Installing Azure AD Connect on a Read-only Domain Controller is a no-go area.

Here’s why:

 

Troubleshooting

Is the problem with Active Directory or with Azure AD Connect?

Requiring a reboot for Azure AD Connect might result in temporal denial of service to users, applications, systems and/or services that rely on the Active Directory Domain Controller. This is especially true for environments with a single Domain Controller. I know this scenario is unsupported, but common in small environments.

 

Disaster Recovery

In terms of disaster recovery (DR), it’s a best practice to keep all Active Directory Domain Controllers as similar as possible and to configure them identically, following a pre-approved procedure. This way, when a Domain Controller fails, it can easily be rebuilt from scratch. When you install Azure AD Connect on an Active Directory Domain Controller, it becomes a one-off.

Azure AD Connect comes with a SQL Server 2012 Express Edition database. When you install SQL Server on an Active Directory Domain Controller, you lose the ability to demote the Domain Controller. This might hurt any disaster recovery procedure you might want to follow, when, for instance, the Active Directory database (ntds.dit) becomes corrupted.

In the worst case scenario, the Active Directory Domain Controller functionality and the Azure AD Connect functionality, would both have to be rebuilt from scratch. I wonder how many people have documented and/or exported their Azure AD Connect configuration, and especially their custom synchronization rules…

 

Security

Any application and/or agent installed on an Active Directory Domain Controller adds attack surface. Azure AD Connect and especially its SQL Server 2012 Express Edition may contain vulnerabilities, that would lower the security stance of the Active Directory Domain Controller they are installed on.

 

Service Accounts

Any Azure AD Connect service accounts that need admin to the local server are added to the Builtin\Administrators group in Active Directory and, thus, gain administrative privileges to the Active Directory domain.

 

Memory consumption

Azure AD Connect comes with SQL Server Express, when you don’t choose to use a separate SQL Server (cluster) to host its database. SQL Server uses resources and is particularly fond of RAM. Active Directory Domain Controllers also likes to use your RAM, to cache its database (ntds.dit).

Granted, in small organizations, the Active Directory database (ntds.dit) would not exceed 40MB, but in some larger organizations, both RAM usages would collide and starve the Windows Server installation from available RAM. Performance issues might follow, when the disk subsystem is hammered for the pagefile.

 

Global Catalogs and the PDC Emulator

When you install any application on an Active Directory Domain Controller, it tends to communicate exclusively to that Domain Controllers. Surely, the Domain Controller wouldn’t need other Domain Controllers to provide the right information. All Domain Controllers are created equally anyway, right?

Some Active Directory Domain Controllers are created more equally than others. Some Domain Controllers act as Global Catalogs. In an environment with multiple Active Directory domains and/or multiple Active Directory forests, Azure AD Connect should be installed on a Global Catalog.

Note:
When you promote a Domain Controller to a Global Catalog, don’t forget to reboot it afterwards.

Other Active Directory Domain Controllers hold one or more of the Flexible Single Master Operations (FSMO) roles. Ranging from forest-wide to domain-wide roles, one role is of particular importance: the PDC Emulator role. The Domain Controller with the PDC Emulator Role in each Active Directory domain is the source of replication for password(hashe)s and Group Policy changes. Especially when using Password Hash Sync (PHS), Azure AD Connect should be installed on the Domain Controller with the PDC Emulator FSMO Role.

 

Support

Microsoft KnowledgeBase Article 2032911 states that is not recommended to install SQL Server on an Active Directory Domain Controller and explains that you ‘may encounter problems’.

From a support point of view, this means that when you encounter problems, you might need to relocate Azure AD Connect somewhere else on the network, before Microsoft would start troubleshooting your issues.

 

Concluding

Don’t do it.

0  

Pictures of Microsoft Ignite 2017

Last week, Microsoft organized its yearly Ignite event in Orlando, Florida. Over 25,000 attendees enjoyed five days of sessions, four days of expo, three bags of swag, two nights of fun and one big keynote.

The weather was really nice. We enjoyed the sun and 30+ degrees (Celsius, that is) temperatures for the time Ignite ran. On Friday afternoon, clouds took over the skies, but that only seemed fitting.

The Orlando Hyatt Regency (click for larger photo)The West Wing of the Orange County Convention Center (click for larger photo)
Ignite at the Orange County Convention Center (click for larger photo)The Orlando Hyatt Regency between the trees (click for larger photo)

As part of Ignite, I presented a 20-minute theater session at Expo Theater 4 on the four common mistakes we see organization make when it comes to Active Directory Federation Services (AD FS) and Hybrid Identity. I attended a session previously at this theater and had a good feeling about the stage, the screen and the acoustics. It was neatly located at the back of the Expo area and had toilets and a bar besides it.

This is me, presenting (picture by Elias Mereb)

Over a thousand people subscribed to my presentation. They didn’t all show up, but those who did created a nice and engaging crowd. While I’d anticipated some people joining us after their restroom visits, all people remained at the session once I began.

Now listen up (picture by Raymond Comvalius)
From the (Dutch) Fields (picture by Elias Mereb)AD FS is only as good as your AD DS (photo by Raymond Comvalius)
Looking at my slides (photo by Raymond Comvalius)Putting it in perspective (photo by Elias Mereb)Leaning in (photo by Raymond Comvalius)
It s a wonderful World (photo by Elias Mereb)The right AD FS Infrastructure (photo by Elias Mereb)

After the session, I talked to a dozen people with further questions, stories of their Hybrid Identity journeys and even a gift. I answered the questions to the best of my knowledge, while the next presentation was on.

Thank You!

Thank you! Duim omhoog

0  

Knowledgebase: Exchange Server 2016 CU7 and up requires the Windows Server 2008 R2 Forest Functional Level

Exchange ServerStraight projects or even tasks, that completely derail because of small print for updates. Don’t you just hate that? Microsoft isn’t the only vendor, that sometimes makes little changes with big impacts. But today, let’s focus on Exchange 2016 and its 7th Cumulative Update (CU) released last week, as it relates to Active Directory Domain Services.

  

The Exchange Server 2016 Support Matrix

The Microsoft team released a blogpost almost a year ago, featuring a Q&A section for Active Directory Forest Functional Levels for Exchange Server 2016. Without quoting the entire article, its summary reads:

  • The support matrix states that the Windows Server 2008 R2 Forest Functional Level is required, but you can install Exchange Server 2016 in an Active Directory environment with the Windows server 2008 Forest Functional Level.
  • When you contact Microsoft Support for issues with Exchange Server 2016 and Windows Server 20160-based Domain Controllers, you might be required to raise the Forest Functional Level  to Windows Server 2008 R2.

But here’s the kicker:

Question #6: When will Exchange Setup force the use of 2008R2 Forest Functional Level for an Exchange Server installation?

Answer: The minimum supported Forest Functional Level will be raised to 2008R2 in Cumulative Update 7 for all Exchange Server 2016 deployments. We know that customers need time to plan and deploy the necessary migration/decommission of Active Directory Servers. 2008R2 Forest Functional Level will be a hard requirement in Cumulative Update 7, enforced by Exchange Setup. Cumulative Update 7 ships in the 3rd quarter of 2017, one year after the first announcement.

Cumulative Update 7 for Exchange Server 2016 applies Active Directory schema changes and now technically enforces that the Active Directory Forest Functional Level (FFL) is at least Windows Server 2008 R2.

 

What this means for Active Directory admins

Active Directory schema changes

Active Directory admins are required to approve and make changes to the Active Directory Domain Services environment when the organization wants to deploy and use Exchange Server 2016 versions 15.01.1261.035, and up.

The changes include:

Forest Functional Level (FFL) Requirements changes

When the environment still runs the Windows Server 2008 Forest Functional Level (FFL), it must be raised to Windows Server 2008 R2, or up.

This requirements means that any Active Directory Domain Controller running Windows Server 2008, throughout the networking infrastructure will need to be decommissioned or upgraded to at least Windows Server 2008 R2.

     

Concluding

In the Active Directory Forest Functional Levels for Exchange Server 2016 blogpost, the Microsoft Exchange team announced that Exchange Server 2016 would enforce a minimum 2008R2 Forest Functional Level requirement for Active Directory.  Cumulative Update 7 for Exchange Server 2016 will now enforce this AD DS requirement.

Further reading

Exchange 2016 system requirements   
Exchange 2016 CU7 Released 
Unexpected Exchange AD Object Values   
Active Directory Forest Functional Levels for Exchange Server 2016  
The Road to Exchange 2010: Active Directory and Exchange Part 3

0  

Pictures of the iSense Security Summit

Yesterday, iSense ICT Professionals organized the first of their monthly summits. Together with Jeff Wouters, Raymond Comvalius, Adnan Hendricks, Edwin van Andel, Ancilla van de Leest and others, we put on quite a show for the attendees, even including colleagues and former colleagues.

I left my customer for that day at around 2PM and arrived at iSense in Gouda at around 3PM. It didn’t take me long to find the other speakers.

Posing for the camera at iSense before the event (Photo courtesy of iSense)

It was still a bit quiet then, but most of the attendees flocked together in the next 30 minutes, just in time for Jeff’s session on Just Enough & Just In Time Administration.

Jeff about to start! (photo courtesy of iSense)
Jeff being interviewed by Ancila (click for larger photo)

After his session, Jeff was interviewed by Ancilla and the audience had ample time to ask questions on PowerShell. Ray and I plugged in, and started our talk on Shielded Virtual Machines in Windows Server 2016.

Talking about BitLocker as a 'solution'... (picture by Adnan Hendricks)Presenting (Picture by Marc Westerink)
Ray presenting (click for larger photo)Ray presenting to the rest of the audience (click for larger photo)

After our session, everyone had dinner. iSense hired the people from Grill’nSmoke BBQ to cater for us and their food is just delicious.

BBQ! (Picture by iSense ICT Professionals)

After dinner, Edwin van Andel from Zerocopter provided a session on why we need to hug hackers, by setting up and communicating a responsible disclosure policy as an organization, while Adnan showed people Azure Infrastructure-as-a-Service to 16 people downstairs..

We won a bottle of Club-Mate each, because we were interacting with Edwin.

Club-Mate. Cheers! (click for larger photo)

Cheers! Duim omhoog

1  

My Cybersecurity Talk interview with CQURE Academy is now available

Raymond Comvalius and I presented at the Nordic Infrastructure Conference (NICConf) in February of this year. Before our Azure AD B2C and Azure AD B2B session, we were interviewed by Paula Januszkiewicz for her CQURE Academy. Raymond’s interview for this series of CyberSecurity Talk has been available for some time. Yesterday CQURE Academy published my interview.

If you want to skip to specific sections of the interview, then use the information below:

00:00 – 00:30 Introduction
00:30 – 01:09 About me and what I do

This is the boring part, I know.

01:10 – 02:24 What Active Directory is safer? The one on-premises or in the cloud?

Paula and I discuss how Azure Active Directory is different from Active Directory and how Microsoft makes Azure AD safer, at least for the coming five years. In the light of the blogpost titled ‘How we secure your data in Azure AD’ on the Enterprise Mobility blog last week, I guess we nailed it six months ago.

02:25 – 04:09 Can you do without Active Directory?

Paula and I discuss if we see Active Directory go away in the next ten years. It begs the question if we can do without Active Directory. New organizations already are Azure AD-only. It’s easy to set up. Existing organizations have a harder time.

04:10 – 06:29 Can you manage Azure Active Directory to the same degree?

Paula provided talking points on role separation, management and auditing. We discussed them al and I feel the two-portal-situation Azure AD is in today, really tells you there’s a lot to manage.

06:30 – 07:57 So you want to be like me?
07:58 – 09:29 Tips for Pros

Don’t be like me.

09:30 – 10:37 What would Azure AD look like in 20 years?

Bigger, better, faster, stronger? Let’s just hope we don’t have to uncomfortably migrate from Azure AD 1.0 to Azure AD 2.0, like we had to with Azure IaaS from the Azure Service Management (ASM) model to the Azure Resource Manager (ARM) model…

10:38 – 11:24 Paula summarizing
11:25 – 12:20 Thank you and goodbye

 

About Cybersecurity Talk

CQURE AcademyPaula leverages her CQURE Academy initiative to share interviews with people doing identity, mobility and security: Cybersecurity Talk. You can watch all interviews and keep up with new interviews at the CQURE Academy Cybersecurity Talks website and the Cybersecurity Talk Youtube Channel.

My interview is the 17th in the series, including interviews with Alex de Jong, Aidan Finn, Johan Arwidmark, Andy Malone, Wally Mead, Sami Laiho and, of course, my buddy Raymond Comvalius. Definitely worth checking out!

 

Concluding

I still can’t believe that Paula and I did one take for this interview and that it survived with only one minor cut. We had so much fun. Watching it again made me laugh out loud three times today.

Enjoy! Emoticon met brede lach

0  

Pictures of the Dutch Windows Management User Group 2017-4 Meetup

Yesterday, the Dutch Windows Management User Group (WMUG) organized their fourth meetup for this year. iSense ICT Professionals was the proud host of this event and made their headquarters available for the event.

After a short introduction by Koen de Vries (iSense) and Kenneth van Surksum (WMUG), Adnan Hendricks presented on Azure ARM templates.

Koen de Vries opening the event (Picture by Adnan Hendricks)Adnan Hendricks presenting (picture by WMUG)
Adnan Hendricks presenting (click for larger photo)

After Adnan’s session we enjoyed dinner.

Presenting (picture by WMUG)

Then, I presented for 60 minutes on the five Platform-as-a-Service (PaaS) technologies in Azure I love the most, but are large misunderstood or overlooked by other IT Professionals.

Thank you!

After my session, we enjoyed a beer and snacks. At 8:30 PM, I was one of the last people to leave at iSense, but I’ll be back next week for the iSense Security Summit.

Thank you! Glimlach

0  

Looking for the Dutch IT Pro Community Connection at Ignite 2017 Orlando? Look no further!

Meet up with the community at Microsoft Ignite 2017

So you love the Dutch; that interesting bunch of people occupying a little piece of mostly reclaimed coastal area in the Northwestern corner of Europe’s mainland. The guys and girls (and everything in between, we don’t judge) who do not shy away from giving you their opinions—their direct, unapologetic, blunt opinions on Microsoft technologies and products..

Great! Duim omhoog
Because there’s four Microsoft Most Valuable Professionals (MVPs), invited to speak at Ignite 2017 in Orlando Florida:
(in alphabetical order of our first names)

 

FreekBersonFreek Berson

Freek Berson works as an Infrastructure specialist at Wortell, a system integrator company based in Lijnden in the Netherlands near Schiphol Airport, where he focusses on End User Computing (EUC) and all related technologies, but mostly on the Microsoft platform. Freek delivers the following community session:

  • Virtual desktops in the cloud: Experiences from the field
    Tuesday September 26 10:20AM – 10:40AM, OCCC South – Expo Theater 4

PeterDaalmansPeter Daalmans

Having worked together with Peter Daalmans for a couple of months last year has helped me understand the ins and outs of enterprise client management in hybrid IT. Now a CTGlobal team member, Peter has joined up with Niall Brady to bring you this enticing session:

  • Conduct a successful pilot deployment of Microsoft Intune
    Friday, September 29 10:45AM – 12PM, OCCC Valencia W415 AB

RaymondComvaliusRaymond Comvalius

My buddy Raymond Comvalius, whom I had to pleasure of presenting with many times over the last ten years, has seen many of the big Dutch IT environments. Focusing on Windows, he has been a Microsoft MVP for the last consecutive seven years. Raymond presents these sessions:

  • Customizing the Start Menu in Windows 10
  • Tuesday September 26 1:35PM – 1:55 PM, OCCC South – Expo Theater 7
  • Device Guard: AppLocker on Steroids
    Tuesday September 26 2:10PM – 2:30 PM, OCCC South – Expo Theater 7
  • Group Policy in MDM: Dealing with ADMX backed policies
    Tuesday September 26 3:35PM – 3:55 PM, OCCC South – Expo Theater 5

Raymond also co-presents with Erdal Ozkaya on his 75-minute Halt hackers: Do those tricks still work with Windows 10? session on Wednesday September 27 12:30PM – 1:45PM in OCCC W207 AB.

SanderBSander Berkouwer

Yes. I’m also speaking at Microsoft Ignite 2017 in Orlando. Emoticon met brede lach
As a tenfold Microsoft Most Valuable Professional (MVP), double Veeam Vanguard and Microsoft Certified Trainer, I still can’t believe I was selected as a Microsoft Ignite community speaker, as I will present the following session:

  • Four common problems to avoid with your AD FS environment
    Wednesday September 27, 2:10PM – 2:30PM, OCCC South – Expo Theater 4

 

Concluding

The Dutch are well represented in Orlando this year. Besides the above speakers, I’m sure you’ll also enjoy the sessions by Marc van Eijk and Paul Huijbregts.

0