Latest Microsoft patch kb:5000802, kb:5000808 produce BSOD on printing.
We can resolve this issue with the two commands below:
In a command prompt with administrative rights
wusa /uninstall /kb:5000802
wusa /uninstall /kb:5000808
11 mar 2021
3 mar 2021
Servizi che possono essere disabilitati su un Domain Controller
Per ragioni di sicurezza si dovrebbe ridurre al minimo la superficie di attacco, soprattutto sui domain controller. Per cominciare potremmo disattivare una serie di servizi, magari tramite una GPO
- ActiveX Installer (AxInstSV) (AxInstSV)
- Bluetooth Support Service (bthserv)
- CDPUserSvc (CDPUserSvc)
- Contact Data (PimIndexMaintenancesvc)
- dmwappushsvc (dmwappushsvc)
- Downloaded Maps Manager (MapsBroker)
- Geolocation Service (lfsvc)
- Internet Connection Sharing (ICS) (SharedAccess)
- Link-Layer Topology Discovery Mapper (lltdsvc)
- Microsoft Account Sign-in Assistant (wlidsvc)
- Microsoft Passport (NgcSvc)
- Microsoft Passport Container (NgcCtnrSvc)
- Network Connection Broker (NcbService)
- Phone Service (PhoneSvc)
- Print Spooler (Spooler)
- Printer Extensions and Notifications (PrintNotify)
- Program Compatibility Assistant Service (PcaSvc)
- Quality Windows Audio Video Experience (QWAVE)
- Radio Management Service (RmSvc)
- Sensor Data Service (SensorDataService)
- Sensor Monitoring Service (SensrSvc)
- Sensor Service (SensorService)
- Shell Hardware Detection (ShellHWDetection)
- Smart Card Device Enumeration Service (ScDeviceEnum)
- SSDP Discovery (SSDPSRV)
- Still Image Acquisition Events (WiaRpc)
- Sync Host (OneSyncSvc)
- Touch Keyboard and Handwriting Panel (TabletInputService)
- UPnP Device Host (upnphost)
- User Data Access (UserDataSvc)
- User Data Storage (UnistoreSvc)
- WalletService (WalletService)
- Windows Audio (Audiosrv)
- Windows Audio Endpoint Builder (AudioEndpointBuilder)
- Windows Camera Frame Server (FrameServer)
- Windows Image Acquisition (WIA) (stisvc)
- Windows Insider Service (wisvc)
- Windows Mobile Hotspot Service (icssvc)
- Windows Push Notifications System Service (WpnService)
- Windows Push Notifications User Service (WpnUserService)
- Xbox Live Auth Manager (XblAuthManager)
- Xbox Live Game Save (XblGameSave)
Microsoft 365: How to force Modern authentication
Outlook App
In the newer versions of Outlook App, Modern Authentication is enabled by default.
In case of problems, that is the window in Outlook that continues to ask for the password, it is also recommended to force the use of Modern Authentication in Outlook, adding, through Regedit, the following registry key, setting the DWORD value to 1
HKEY_CURRENT_USER\Software\Microsoft\Exchange\
AlwaysUseMSOAuthForAutoDiscover – DWORD=1
Tenant
Check to see if Modern Authentication is ENABLED for your Office 365 tenant
Run the command Get-OrganizationConfig | Format-Table Name,OAuth* -Auto
If you see “False” listed next to your Office 365 tenant proceed to the next step to enable Modern Auth. If you see “True” then Modern Auth is already enabled; no further action is required. Skip to Disconnect your PowerShell session.
Enable Modern Authentication for your Office 365 tenant
Run the command Set-OrganizationConfig -OAuth2ClientProfileEnabled $true
Note: This command does not prevent connections via Basic Authentication. Desktop and mobile e-mail client applications which do not support Modern Authentication will still be able to connect to the Office 365 account using Basic Authentication until October 13, 2020.
Verify Modern Authentication is ENABLED for your Office 365 tenant
Run the command Get-OrganizationConfig | Format-Table Name,OAuth* -Auto
You should now see “True” listed next to your Office 365 tenant indicating that Modern Authentication is enabled for your Office 365 tenant
Iscriviti a:
Post (Atom)