Nathan McNulty · @nathanmcnulty
967 followers · 314 posts · Server infosec.exchangeIf you manage Windows Servers, I'm starting a new series on Azure Arc that you might be interested in :)
Arc is a growing platform that provides a lot of newer capabilities, like update management that replaces WSUS or SSH to on-prem Linux servers using Azure AD identities!
In this first post, I'm providing a detailed walkthrough of the onboarding process using Group Policy because I think it's one of the most common but least clear methods if you try to use the documentation :)
As always, I love feedback, so let me know if you see anything that can be improved!
https://blog.nathanmcnulty.com/azure-arc-onboarding-servers-with-group-policy/
Nathan McNulty · @nathanmcnulty
932 followers · 265 posts · Server infosec.exchange"In the end, it cost just under $1,700 for a server that has 2x 14-core 2.4 GHz CPUs, 384 GB RAM, 8x 1.2 TB 10K RPM drives, and 3x 1TB NVMe 3500MB/S SSDs. I have been running 3 labs totaling 62 VMs, with Server 2022 + Hyper-V as the host, mostly due to integration with Azure for work related scenarios :)"
I just published a post on building my home lab in hopes that it helps others out there!
https://blog.nathanmcnulty.com/lab-server-build/
I have a couple of friends who are just getting started, and as I was gathering the information, I thought it might be helpful to put it into a blog format and share it.
Let me know if you have any questions :)
Nathan McNulty · @nathanmcnulty
605 followers · 174 posts · Server infosec.exchangeGah, I forgot to include the hashtags for my blog post... :(
#intune #accesspackages #NathansBlog
Nathan McNulty · @nathanmcnulty
605 followers · 174 posts · Server infosec.exchange
Hey all, I just published an article on using Azure AD's Access Packages to enable end user device enrollment in Microsoft Intune
https://blog.nathanmcnulty.com/intune-using-access-packages-to-enable-user-device-enrollment/
If you have Azure AD P2 licensing and haven't seen Access Packages, welcome to your new obsession :)
There are a ton of other use cases for these, and I'm hoping to have some future posts to showcase great ways to use them from a security standpoint!
#intune #accesspackages #NathansBlog
Nathan McNulty · @nathanmcnulty
605 followers · 174 posts · Server infosec.exchangeI have been wanting share my process for implementing Microsoft Defender's ASR rules for a while, and while it's not refined to where I'd like it to be, I'm going to share it and hopefully update when I can (maybe once per-rule exclusions are available).
Defender for Endpoint - Implementing ASR Rules
https://blog.nathanmcnulty.com/defender-for-endpoint-implementing-asr-rules/