Security

Azure App Service Lets Encrypt Renewal Failures and Resolution

Paying for certificates isn’t the done thing when you can get free certificates from Lets Encrypt. Free certificates from Lets Encrypt come at a different price and that is lifetime as the certificates are only ever valid for 90 days. If you’re still manually buying and installing certificates annually then you don’t want that four times a year so we automate the process end-to-end. This has been working perfectly since about 2018 for us, however, a recent alert about a certificate expiring made us sit up and look at this case of Azure App Service Lets Encrypt renewal failures and the resolution.

Read more…

Arcible and the SolarWinds Solorigate SUNBURST Threat

At Arcible, we take monitoring our services seriously and we take security seriously too. We use multiple products for the monitoring of our services; we consider security at all times and factor it into multiple layers of our operations. We’re releasing this article both as reassurance for our customers and for your information about Arcible and the Solorigate SUNBURST threat.

Arcible does not use the SolarWinds Orion product or any SolarWinds products to conduct our business either internally or externally with customers. Based on our current understanding and knowledge of the issues, Arcible does not believe that it is impacted by the SolarWinds threat, however, we continue to remain vigilant and review our security tools.

Read more…

Microsoft Flight Simulator on a Work Device

If you are a developer planning on using the Microsoft Flight Simulator APIs or whether you run some kind of aviation playground, running Microsoft Flight Simulator is going to be a must which may mean being able to run Microsoft Flight Simulator on a work device.

I’m a big aviation fan and while I don’t fly myself (the PPL is a dream for one day), simulations are the closest I’ll come for now. For anyone interested, the picture on this post is of me flying the Cessna 172 over Farnborough Airport, not too far from us in Basingstoke.

When I tried to install Microsoft Flight Simulator on a PC that was domain-joined as my Arcible work device, I couldn’t even get it installed. To download and install Microsoft Flight Simulator through the Xbox Store requires the new Xbox app for Windows 10. For this app to work, you need to be able to sign-in with your Xbox Live account and that was failing.

Read more…

Using Azure AD Application Proxy to Publish Internal Web Apps

With users working remotely, how are they accessing the internal line of business systems such as web applications that you have running? Chances are they may be having to use a VPN but Azure AD Application Proxy could provide you with a better solution.

Oftentimes, we work with customers to help them to move workloads to Microsoft Azure but what if you want or need to keep something on-premises?

Read more…

Security Key Login with Hybrid Windows 10 Devices

Technically speaking, this feature has been available for some time if you were prepared to use machines joined to the Windows Insider Programme, as it required a minimum build of Windows 10. Because that build, Build 18945, was exclusive to the Insider Programme, it meant that this feature wasn’t viable for production users because who wants to use preview builds with real users?

With the release of the May 2020 update for Windows 10, however, all the parts are now all there in production form to enable the use of a security key for Windows 10 login on hybrid devices.

Read more…

Setting the Default Presenter Permission in Microsoft Teams

Last week, we posted the second of our Microsoft Teams Tips videos on our YouTube channel where we discussed setting the presenter permission for your meetings. If you haven’t seen this then please, take a look and let us know what you’d like to see us discussing.

Since we posted that video, Microsoft has now, silently as far as we can tell from the blog and tweet spheres, made a change in Microsoft Teams that allows you to configure the default presenter permission for your organisation.

Read more…

User Roles within a Microsoft Teams Meeting

So you’re attending a meeting and want to know what you can do with the user role permissions that you have? Maybe you are setting up a meeting of your own and are worried about other people being able to steal the stage or take over your meeting; especially important for teachers using Microsoft Teams to present to classes.

Read more…

Securing Passwords with Azure AD Password Protection

Organisations define password policies to ensure that their users are not setting weak passwords that can be easily compromised. In this article, we explore securing passwords with Azure AD Password Protection and whether it can help make you more secure but also easier on your users.

Traditional password policies in Active Directory rely on basic filters to determine the number of characters and type of characters including numbers, letters, and symbols. On face value these policies may seem secure, however, are these policies actually causing the problem and much weaker than you think?

Read more…

Manage Software Updates with Azure Update Management

The answer is Azure Update Management so what is the problem we are trying to solve? At Arcible, we have some on-premises servers. To keep safe, secure, and compliant, these servers need patching just like any other server does. Our environment is small and not big enough to justify a Microsoft Endpoint Manager (formerly Configuration Manager) deployment and Windows Server Updates Services (WSUS) is too painful and manual to manage.

So if we aren’t using Microsoft Endpoint Manager or WSUS, what do we do? We want a solution that’s automated to reduce the admin overhead but while being lightweight and not costing much.

Read more…