Windows Server

Hello! I'm wondering if I am going crazy, but I have seen breaking changes to a couple of client tenancies where column validation is now occurring for any item/file creation or modification event. This was not happening a month or so ago, and I've got evidence of that with files being able to be placed in a library previously, and not, now. This is because it is clearly trying to validate on column information that is not entered by the (flow) creation of the file. If I were to try to deal with this INSIDE the validation formula for all my lists, ever ... this could effectively cripple me! 😅 --- I'm not posting a problem that needs fixing, here, so please, I do not need to be asked what I have and haven't tried ... I'm simply asking if others have noted a similar thing happening. View the full article

I am unable to launch co-pilot from desktop Team app, when I click on Co-pilot plugin in team a blank page comes and after few minutes I receive error "There was a problem reaching this app" Please suggest View the full article

In Hamburg on the M.A.D. Day (Modern Application Deployment) we could announce that App-V is no longer being deprecated – The Client and the Sequencer. But the Server will still go away. With this Post I would like to clarify a few things which also was brought up by Tim Mangan in his Analysis of the M.A.D. Day 2024 and specific this announcement. In April 2026 the following App-V Components will be End of Life: All App-V 5.0 SP3 and 5.1 Clients All App-V 5.0 SP3 and 5.1 Sequencer The App-V Server Components 5.1 (Management / Publishing and Reporting Server) The original plan was to remove the App-V Client with the Release of Windows in 26H2 – so the last Windows Client OS would be Windows in 25H2 – as this would be also a LTSC Version of this release and the Support of App-V is bound to the Windows OS you use – the End Date is always the same End Date as the OS you use. As Example: Windows 11 24H2 has an Support End date of October 2027 Windows Server 2025 as an End Date for Extended Support in 2034 These dates of the OS are matching with App-V. What has changed now? When we as Microsoft say – we no longer deprecate we mean that we will not remove the App-V Client from future OS Versions. And also the Sequencer will be still part of the ADK. This Include Windows Client as well as Server and also Windows 365 and AVD versions. In addition to stop the removal we also commit to bring Bugfixes and Security Fixes to App-V on the given OS this includes Supported Windows Client Versions and Server. The Product Team has decided not to provide an End date to APP-V Client and Sequencer which now puts the product on a like for like basis with MSI; that product has had no features for more than a decade (or longer) but still ships with the OS and bugs are addressed. It is still part of any Windows OS release. The same will apply to APP-V. Why was this decision made? I use a Slide from our own investigations with some Enterprise Customers. This matches partially with the Report Card Tim is creating. To download the Report Card, you can go to Tims Website (Home) When we look at this chart, we see that Packaging with the MSIX Packaging Tool ends up with a success rate of ~ 30 %. So, 7 out of 10 Applications need additional adjustments. If we compare it with App-V and the Sequencer we are between 80% – 90% success rate, without the need to touch the Package again. And the orange bar shows a higher success rate. To get the app to work it will require more manpower and additional resources thus incurring additional costs and there is no guarantee that the apps will function correctly. Where are all the MSIX Packages from Vendors? Our Official Statement is that “all Store Apps” are MSIX and they can be loaded… OK – but we also see in reality that a majority of Customers turn off the Microsoft Store so that Employees are prevented from loading “Consumer” Apps to their Work environment and for Enterprise apps Microsoft Store for Business was retired in 2023. There are not many “real” Enterprise / LOB Applications out there which come native as an MSIX Package – The New Teams is an Example and if you like we can add the New Outlook to that list as well. And here is the magic word “NEW” – if you build a new App you can go with MSIX no question. But in enterprises there are still many “older” Win32 Applications which are there for years, they do their Job, and they are still needed in enterprise organizations. Office and Add-ins It’s worth to mention that it is a common use case to virtualize Office Add ins and let the local C2R (Click2Run) installed Office start into an App-V Bubble so it can see the add-ins. This scenario is not possible with MSIX as of today – nor does Office support the use of MSIX enabled Add-ins in Office. The only Application Virtualization Platform where customers get support from Microsoft when using Office as part of it, is App-V. Everything else (Including MSIX) is not supported. Statement Because of these reasons we see that removing the App-V Client / Sequencer would end up in a situation which would create Adoption blockers to new OS / Office. Here we would like to give customers the choice and maintain their investment in App-V moving forward. At the same time, we will continue to invest in MSIX and App Attach to close gaps. Here is our Statement: We will continue to evaluate and balance MSIX and App Attach investments with longer-term ambitions to close the gaps with App-V, but we recognize it’s currently not a complete replacement, and we need to renew our commitment to App-V to put our enterprise customers at ease and unblock their migration to the cloud and to newer Windows versions. I hope I can clarify a few points here. The last thing I would like to see is any confusion around that statement. There was confusion enough with the April 2026 Date and MDOP. If there are anything unclear about this – please feel free to get in touch with me Thank you for reading. If you are interested in all Sessions from the M.A.D. Event, please check out M.A.D. Day Channel: M.A.D. Day - YouTube Sebastian Gernert Escalation Engineer View the full article

Hi. I would like information on which products are needed to implement 2FA on our infrastructure. We currently have 3 Windows Servers (one in version 2022 and two in version 2016) that some colleagues need to access remotely via a remote desktop gateway (also in version 2016). We have an Active Directory domain with a Primary Domain Server and a Backup Domain Server (both 2016) on which we have also installed the NPS role. Some colleagues already operate in remote desktop on these machines from the outside, and on these connections we would need to implement, for security reasons, 2FA. ReView the full article

This article describes what happens when the Connect-MgGraph cmdlet runs in interactive and app-only sessions with the Microsoft Graph PowerShell SDK. A session is created and a context is established, and it's possible to use the session context to do real work. https://practical365.com/connect-mggraph-context/ View the full article

Hi I have an odd situation with random users. When SSPR is enabled for them, they cannot login email on their iPhone corporate Intune device, is pushing the login to conditional access trusted locations blocked. Email works just fine with SSPR disabled. Anyone experience something similar. View the full article

As the Internet of Things (IoT) landscape evolves, device identification is critical. In this guest blog post, Sukhyung Shin, Senior IoT Solutions Architect - Strategy, Keyfactor, discusses how Microsoft’s Azure IoT Hub (Azure IoT Hub) and IoT Hub Device Provisioning Service (DPS) can employ public key infrastructure (PKI) to ensure robust security for IoT devices and their communications. What is PKI? PKI uses a pair of keys — a public key and a private key — to identify devices and secure internet communication. The public key is contained inside a certificate, which proves trust in the device’s identity. This trust is proven through a hierarchy of trusted entities, with absolute trust at the root level. The root level of trust is pre-trusted by the application. Each certificate has a digital signature attached to it. The root signs itself. The root also signs certificates for lower-level trusts, which signs certificates for a device. When a digital certificate is presented, the recipient can verify its validity by checking the chain of signatures back to the absolute trust at the root level. Private trust allows a company to ensure only devices it manufactures or has manufactured are allowed into the trusted ecosystem. This way, a company gains secure identification for valid devices. PKI in Azure IoT Hub Device authentication Azure IoT Hub and DPS can leverage PKI for device authentication. This method utilizes certificates that include a device’s public key and identity information. When a device connects to Azure IoT Hub or DPS, its certificate is verified to confirm the device’s legitimacy, ensuring trusted communication. This prevents rogue devices from sending bad data to Azure IoT Hub. Secure communication Following authentication, Azure IoT Hub secures data transmission with encryption, allowing only the device holding the corresponding private key to decrypt and access the data. This process protects the data from being intercepted or tampered with during transmission. Certificate authorities Certificate Authorities (CA) sign certificates. Using a CA simplifies device identity management. The CA verifies device identities before issuing certificates, enhancing overall security. Depiction of IoT environment. Benefits of PKI in Microsoft’s Azure IoT environment Enhanced security: PKI ensures only authenticated devices connect to Azure IoT Hub or DPS and that their communications are encrypted. Scalability: PKI facilitates the management of numerous IoT devices, allowing for remote and automated certificate issuance, renewal, and revocation. Interoperability: Standard PKI protocols enable Azure IoT Hub and DPS to interact securely with various devices, regardless of manufacturer. Audit and compliance: PKI improves device interaction auditing, which is crucial for compliance in many sectors. Implementation considerations Certificate management: Properly managing certificates — issuing, renewing, and revoking — is essential for maintaining security. Security of private keys: Devices must protect their private keys, preferably in secure, hardware-based storage, to prevent unauthorized access. Rotation of private keys: Just like passwords, the private (and associated public) keys should be rotated on a schedule. Monitoring and response: Continuous monitoring for security breaches and effective response strategies for compromised devices or certificates are vital. Ready to get started? PKI is integral to securing device identities and communications in Azure IoT Hub, providing a reliable framework for authenticating and encrypting device data. By implementing PKI, companies can enhance the security and scalability of their IoT solutions, ensuring data integrity and compliance across diverse IoT deployments. As IoT technologies advance, PKI will continue to be a fundamental component in the secure and efficient management of IoT ecosystems. Available in Azure Marketplace, Keyfactor Command for IoT is a leading PKI and certificate management platform that automates initial device provisioning into Azure IoT Hub or using DPS. Additionally, Keyfactor coordinates automating certificate rotation and keeps the device identity (certificate) synchronized with Azure IoT Hub. Want to try it out first? Check out the 30-day free evaluation. View the full article

I am unable to use DSC ( Digital Signature on Windows Server)View the full article

Hey there, I would like to request the ability to change the background color of a content add-in to transparent. Use case: Imagine a subtitle content add-in for a Powerpoint, where a solid white background might feel too stark or overwhelming. It would be much better to have the option to set a transparent background or a color with adjustable opacity to achieve a more subtle effect. View the full article

Our company recently purchased another company. While we are preparing migrating users from the two legacy tenants to a new, third tenant, we collaborate with each other using Cross Tenant Synch and Cross Tenant Access. I am currently testing out Places, but I am unable to add my team members from the other company to a Workgroup in Places: "1 user(s) couldn't be added, the administrator has disabled adding these user(s) to any workgroup". Any idea how/where I can change this? I am Global Admin. View the full article

Hello,I am experiencing an issue with IIS on our server. In the "sites" section, I have a website with the physical path set However, it seems that the subfolders that should be available in this path are missing. I have the same problem on the old server that I migrated to this new one by exporting apphostconfig.WIN SERVER 2019, IIS 10 Here are some steps I have already tried:Verified that the application folder exists and contains the necessary files.Checked permissions and ensured that the IIS user has full access to this folder.Added the missing virtual directories in IView the full article

DevDay 2024 marked its tenth anniversary in style, as the “Palais des Congrès” in Mons, Belgium, buzzed with the energy of 600 developers, enthusiasts, and tech leaders on November 7th. After years in Louvain-La-Neuve, the return to Mons was symbolic—grounding this event in its hometown roots while underscoring its growing influence in the tech community. The excitement was palpable from the moment attendees arrived. The event offered nearly 40 sessions, with topics ranging from generative AI to cloud architecture. Aimed at fostering learning, connection, and innovation, DevDay 2024 showcased a broad range of talks, from deep-dive sessions to quick-fire lightning talks. One of the event co-organizers, the MVP Adrien Clerbois described the atmosphere as “inspirational,” noting the rare opportunity for so many passionate people to gather and share insights. “My motivation lies in creating a space where we can all share our enthusiasm for technology and innovation,” said Adrien, who has been pivotal in organizing this event to foster genuine connections within the developer community. MVP Adrien Clerbois This year, the focus on AI ignited an especially enthusiastic response. Developers were captivated by sessions exploring AI-driven productivity tools, efficient application development, and the transformative potential of generative AI—a field that has rapidly evolved and captured global attention. Nicolas Robert, another MVP and first-time speaker at DevDay, presented on generative AI and Azure PaaS best practices, recognizing the event’s unique impact in the developer space. MVP Nicolas Robert "It’s different from most of the conferences I attended last year,” Nicolas reflected. “It’s community-led, but with the polish of a professional conference.” He emphasized that this community feel, combined with high-quality content, made DevDay a standout experience and an ideal networking hub. Beyond the packed schedule of talks, DevDay provided moments for attendees to forge meaningful connections with peers, speakers, and even Microsoft representatives who joined the event. The presence of Microsoft team members, impressed by the event’s scope and quality, highlighted DevDay’s growing reputation as a key tech gathering in Belgium. For Adrien, Nicolas, and others in the organizing team, DevDay is more than a one-day event—it’s an evolving community. Every year, it provides a platform for sharing the latest in tech innovation, connecting seasoned professionals with emerging developers, and responding to the tech world’s rapid advancements. With DevDay’s popularity on the rise, organizers are already looking to next year, inviting new ideas for speakers and sessions. As DevDay 2024 came to a close, attendees left Mons with new knowledge, inspiration, and a shared commitment to technological innovation. In the words of Nicolas, “Don’t hesitate to attend DevDay BE! And if you have something to share, check the next Call for Speakers and submit your idea!” DevDay has become a beacon for the Belgian tech community, bringing the brightest minds together in a collective pursuit of progress and innovation. If you are interested in more content, some of the sessions slide decks are available on the DevDay Github repository. View the full article

After a fresh installation of Windows Admin Center 2410, I cannot add any servers, clusters, PCs etc. WAC gives me "You can add this computer to your list of connections, but we can't confirm it's available" when I enter a computer name (either of FQDN or computer name alone). When I change to the Search Active Directory tab, I get: "We can’t search Active Directory because the Windows Admin Center computer isn’t joined to an Active Directory domain. It’s also possible that your account doesn’t have permission to read from Active Directory.​" The account I use is a domain admin, and the server running WAC is definitely joined to the AD DS. The server had the previous version of WAC installed where everything worked. Now, with the new version, that's no longer the case... View the full article

Currently (December 2024), Apple macOS users can install a dedicated Universal Print all from Apple App Store, so that they can print using their AAD Universal Print License and setup. Perfect flexibility for users who bring their own device (BYOD), which is usually not managed in Intune. However, users who also bring their own device (BYOD) running Windows operating system and where their personal device is also not domain joined (or Intune managed), cannot take advantage of Universal print, because there is no dedicated Universal Print app available in the Windows App Store. They would need to log in on their private device with their institution account and allow control via Intune - what no one will do. It would be great to have this Universal Print app also available for Windows users, so that they can login to their AAD account (which includes the UP license) and print remotely. Thank you! View the full article

Two types of retention labels are in use: Microsoft 365 retention labels and MRM retention tags. Clients hide the difference, but the Microsoft Graph PowerShell SDK cmdlets can only process Microsoft 365 retention labels for files stored in SharePoint Online and OneDrive for Business. EWS can manage MRM retention tags, but it’s on a fast path to retirement in 2026… https://office365itpros.com/2024/12/18/microsoft-365-retention-labels-ps/ View the full article

I am looking for a free way to image PC's in bulk, can I use SCCM for free in a business scenario or is there still a cost. Also will Fog Project and MDT work with Windows 12 does anyone know please?ThanksSimonView the full article

Keeping up with the latest Azure advancements in your Azure Landing Zone Azure Landing Zones (ALZ) have become a cornerstone for many customers' cloud environments, providing a structured approach to building scalable, secure, and compliant Azure architectures. As organizations increasingly adopt Azure, they rely on landing zones to ensure a consistent foundation that aligns with best practices across governance, networking, identity, and resource management. At the same time, Azure itself is evolving at an unprecedented pace, introducing new services, capabilities, and enhancements to existing offerings. These advancements empower customers to optimize their operations, improve their performance, and strengthen their security posture, keeping them competitive and resilient in a rapidly changing digital landscape. To keep pace with Azure’s constant evolution, the Azure Landing Zone team is dedicated to aligning its guidance and tools with the latest innovations; it's one of our design principles also "Alignment with Azure-native design and roadmaps". By continuously incorporating the latest features and capabilities where appropriate to do so, ALZ ensures customers can take full advantage of new Azure features while aligning with the ALZ guidance. The ALZ team is always updating the published guidance and accelerators (Portal, Terraform, Bicep and Subscription vending), offering actionable guidance and implementation patterns tailored to new Azure capabilities for new and existing ALZ customers. This commitment helps customers confidently adopt new services while leveraging ALZ as a foundation for innovation, security, and operational excellence. Our approach Given the size of ALZ and the sheer amount of Azure services that are deployed, the ALZ team relies on multiple inputs for evolving the current reference implementation: Customers and partners' feedback (GitHub issues, direct feedback through engagements,...etc) ALZ core team feedback Continuous alignment with and requests from various ALZ related Azure Product Groups Internal and external communities Telemetry Microsoft Events and announcements The ALZ team triages all those inputs and prioritizes what features to adopt based on severity, impact to new and existing ALZ customers, deprecation date (if any), amount of work and complexity, and other signals. Microsoft Ignite 2024 The latest Microsoft Ignite event as an example had lots of exciting new announcements that can contribute to improve your Azure Landing Zone operations and enhance your security posture. Some of the announcements that we are thinking about at the moment are (but not limited to): Azure Network Security Perimeter (Public Preview) Fallback to Internet for Private DNS Zone (preview) DNS security policy (preview) DNSSEC (preview) Azure Bastion Premium SKU Azure Firewall Management NIC requirement We will use the same approach and criteria stated above to prioritize implementing those features. Let's discuss how you can track this process and have a saying on how we prioritize. What are we working on now? Before Microsoft Ignite, we shared a public survey with the features and capabilities we want to bring to Azure Landing Zones and thanks to the community's responses we started prioritizing and working on the following features: Adding Azure Bastion to all accelerators and refreshing its guidance Default outbound access for virtual machines Removing non zone-redundant virtual network gateway SKUs Private DNS resolved guidance and implementation Migration from NSG flow logs to Virtual network flow logs Azure Virtual Network manager updates How can you help us prioritize going forward? The ALZ team maintains a roadmap on the Enterprise-Scale GitHub repository where we share updates and statuses on different ALZ workstreams including new features we are considering integrating into ALZ. We also encourage you to share your thoughts, ideas and suggestions for work items we have on our roadmap using the discussions tab of the repository. This will help us prioritize features and capabilities we bring into ALZ. View the full article

I am facing this annoying error which poping up every few mintues after updating my windos to Windows 11 Home.I am not sure how to solve this issue!View the full article

WindowsServer2025の検証にて、組織名と使用者名の変更をしたいのですが、WindowsServer2022は下記レジストリにあった項目で変更できたのですが、WindowsServer2025には組織名　RegisterdOrganizationと使用者名　RegisterdOwnerがありません。HKEY_LOCAL_MACHINE\ SOFTWARE\Microsoft\Windows NT\CurrentVersion組織名と使用者名の変更方法を教えていただけますと幸いです。よろしくお願いいたします。View the full article

When selling through the Azure Marketplace there are various payout schedules. In the reports i see different types of 'Sales Channels'. There is: EnterpriseGo to MarketPay as you GoBut in the documentation (link) there are other terms that are being used EAMCACSPCan anyone else to explain in detail when we can expect to get the money for each type of Sales Channel? Thank you. View the full article

While trying to in-place upgrade Windows Server 2012 r2 standard to Windows 2016 server standard, after couple of step progress, "Keep files & apps" options is grayed out.Need help on this topic.View the full article

Greetings! Microsoft is updating a certification for Microsoft Dynamics 365 Business Central Functional Consultant, and we need your input through our exam blueprinting survey. The blueprint determines how many questions each skill in the exam will be assigned. Please complete the online survey by January 7th, 2025. Please also feel free to forward the survey to any colleagues you consider subject matter experts for this certification. If you have any questions, feel free to contact Rohan Mahadevan at rmahadevan@microsoft.com or John Sowles at josowles@microsoft.com. Microsoft Dynamics 365 Business Central Functional Consultant blueprint survey link: https://microsoftlearning.co1.qualtrics.com/jfe/form/SV_b1wB0tTpeqrWSgu View the full article

Has anyone else noticed that the format for the "Export Users" feature in the Microsoft 365 admin center changed? It's missing some columns (fields) and no longer has a delimiter between the Licenses. This makes using this file for license reviews impossible. View the full article

I need to create a single temporary voicemail for all Teams Voice users for the Xmas break. Can someone please help with setting this up with best practice? This voicemail message has already been setup for a main phone number IVR using an Auto Attendant. View the full article

I suffer from macular degeneration. Visual elements on dark background are difficult to see, especially text. This is made much worse if the font is small, or if the text color isn't bright enough, or contrast is generally lacking.The CMD.EXE shell and Powershell windows in Win11 default to color scheme with dark backgrounds. There are additional color schemes with white backgrounds, called "One half light", "Solarized light", and "Tango light".I tried all 3 of these schemes with Powershell.With Tango light, when I start typing a command, the command text is yellow, and the background is whiteView the full article