Author: Émile Cabot

Hyper-V to Stop Malware: Application Guard

For the fourth post in this series, we’re going to look at what’s probably my favourite new feature of Client Hyper-V: Windows Defender Application Guard. This is really cool, as it allows you to isolate the biggest threat to your machine…Surfing the web. Either manually or through defined policies, Microsoft Edge will launch its session inside a protected Virtual Machine that has no (or configurable, like copy/paste) access to the host computer or operating system. Any malware that inadvertently gets downloaded during the browsing session has zero access to the computer, and is automatically purged as soon as Edge is closed. Like Hyper-V itself, Windows Defender Application Guard is available to be installed as a Windows Feature. We enable it by first going to appwiz.cpl and clicking Turn Windows features on or off on the left-hand side. In the Windows Features window, scroll all the way to the bottom and you will find Windows Defender Application Guard. If you don’t see it, your version of Windows is no longer supported. As of Windows 10 1709, Enterprise edition is required to enable Windows Defender Application Guard, so if you don’t have that edition than it will be greyed out.  By 1803, Microsoft will allow you to implement Application Guard on Windows Pro, having recognized the large benefit to consumer users as well. If all is good, check the box to...

Read More

Hyper-V for your passwords: Credential Guard

The third post in this series will start to look at how Hyper-V can be used to secure your Windows box. One of the things attackers will be on the hunt for is the stored username and password combination on your machine. These credentials get cached when you log on, in the format of a password hash, and introduces the need for something like Windows Defender Credential Guard. With this hash, attackers can pass it on to resources on your network in an attempt to determine access to critical and/or confidential data. When we enable Credential Guard, the user’s...

Read More

Hyper-V in Windows 10: Quick Create VMs from Template

In the previous post, I showed you how to get Hyper-V running on your Windows 10 computer. Next, we will create our first VM and then use it to quickly create additional VMs in the future. Before continuing, make sure you have an ISO of Windows 10, or if you have an SCCM or MDT environment, you can build a Hyper-V VM using that infrastructure. Step 1: Reference VM Creation If not still open from the last post, launch Hyper-V Manager. In the Action Pane, click New -> Virtual Machine… In the New Virtual Machine Wizard, click Next on...

Read More

Hyper-V in Windows 10: Initial Set-Up

Since the early days of Microsoft Virtual PC, there has been significant changes to the performance of Hyper-V, and the things we can do with it. Although the main function of Hyper-V is that of a hypervisor for virtualized server platforms, including it as part of the Windows 10 client not only gives you that functionality on your workstation, but also enables a bunch of cool features that utilize the virtualization components for things besides a ‘traditional virtual machine.’ At its core, Hyper-V utilizes Intel’s Virtualization Technology, which is a setting that is enabled in the BIOS/UEFI. We also...

Read More

Top Level Configuration Manager Collections

Having been through quite a few CM migrations over the past few years, one of the things that I have seen heavily used in previous versions is nested collections, which had a similar functionality in SCCM as nested groups in Active Directory. However, this option has been removed with CM12, leaving administrators to re-think their collection hierarchy practices. Proper folder management is a large part of that, especially in larger organizations, but top level collections are still just as important, if not more, in the new version of Configuration Manager. The main reason for this is that we use...

Read More

Translate our Blog

Subscribe to our Blog

Authors

Microsoft MVP

MODE

Nutanix NTC

Veeam Vanguard

Follow me on Twitter

Follow @AllanRafuse on Twitter