Category Archives: Group Policy

Windows 10, version 20H2 build 19042 introduces five new Group Policy settings

On October 20th, 2020, Microsoft released Windows 10, version 20H2 build 19042 to Visual Studio Subscribers and organizations with access to the Software Download Center and the Volume Licensing Service Center. This version is also known as Windows 10 ‘October 2020 Update’. This Windows version introduces five new Group Policy settings.   New Group Policy […]

0  

Group Policy Elevation of Privilege Vulnerability (CVE-2020-16939, Important)

On Tuesday October 13th 2020, Microsoft released updates for all supported versions of Windows and Windows Server to address an elevation of privilege vulnerability in Group Policy, marked as important. Its official common vulnerabilities and exposures (CVE) id is CVE-2020-16939. Yesterday, the Zero Day Initiative (ZDI) shared more details and a Proof of Concept (PoC). […]

0  

On-premises Microsoft Identity-related updates and fixes for June 2020

Even though Microsoft's Identity focus moves towards the cloud, they are not forgetting their on-premises roots. Windows Server 2016 and Windows Server 2019 still receive updates. These are the updates and fixes we saw for June 2020:   Windows Server 2016 We observed the following updates for Windows Server 2016: KB4561616 June 9, 2020 The […]

0  

Group Policy Elevation of Privilege Vulnerability (CVE-2020-1317, Important)

This Tuesday, Microsoft released updates for all supported versions of Windows and Windows Server to address an elevation of privilege vulnerability in Group Policy, marked as important. Its official common vulnerabilities and exposures (CVE) id is CVE-2020-1317.   About the vulnerability An elevation of privilege vulnerability exists when Group Policy improperly checks access. An attacker […]

0  

Windows 10, version 2004 introduces 134 new Group Policy settings

Microsoft has released Windows 10 version 2004 build 19041 (or ‘Windows 10 May 2020 Update’) through Windows Server Update Services (WSUS) and Windows Update for Business. It was previously already available as download from Visual Studio Subscriptions, the Software Download Center (via Update Assistant or the Media Creation Tool), and the Volume Licensing Service Center. […]

0  

I’m presenting my Active Directory 101 course with Netwrix again

Whether you are an Active Directory novice or an experienced IT professional, enroll in my upcoming free online course for step-by-step instructions and industry best practices for Active Directory management. These sessions are also a great way to get ready for Exam 70-742. Note:These webinars cover only 3 out of 5 topics for Microsoft exam […]

2  

Windows Server 2016’s November 2018 Quality Update brings several Active Directory fixes

Windows Server 2016’s November 2018’s Cumulative Quality Update, bringing the OS version to 14393.2639, offers a fix for an issue with Group Policy and a fix for an issue you might be experiencing on your Windows Server 2016-based Domain Controllers.        About Windows Server 2016 Updates Microsoft issues two major updates each month for Windows […]

0  

Passing Microsoft Exam 70-742: Identity with Windows Server 2016

There is a good and free way to prepare for Microsoft exam 70-742: Identity with Windows Server 2016. In the past years, I conducted webinars that can serve as a primer on Active Directory in terms of forests, domains, trusts, security and on Group Policy. They are not and were never intended as the sole […]

0  

I’m presenting an Active Directory 101 course with Netwrix

I know from my own experience – the importance of Active Directory and its security can never be overestimated. So, I’ve teamed up with Netwrix to bring you an easy yet extensive update for your knowledge of Active Directory management and security principles. Therefore, this September, I’m hosting three consecutive webinars on Active Directory Domain […]

0  

Security Thoughts: Vulnerability in Group Policy could allow elevation of privilege(MS61-072, KB3163622, CVE-2016-3223)

This entry is part 2 of 4 in the series June 2016 Patch Tuesday

Yesterday, Microsoft released update 3163622 as part of its June 2016 Patch Tuesday to address an important vulnerability that affects Group Policy on Windows 10.   About the vulnerability The vulnerability could allow elevation of privilege if an attacker launches a man-in-the-middle (MiTM) attack against the traffic passing between a domain controller and the target […]

0