Reading Time: 12 minutes9 Welcome to the first deep dive in my Zero Trust blog series. If you’ve read the series introduction, you’ll know that Zero Trust isn’t a single product or a quick fix it’s a strategic approach that touches every part of your digital environment. Over the coming posts, I’ll be breaking down each of the core […]
Continue reading
Reading Time: 14 minutes11 Introduction Over the past few years, I’ve seen a growing interest in Zero Trust but also a lot of confusion. Many still view it as a product you can buy or a feature you can switch on. In reality, Zero Trust is a mindset a strategic approach to security that requires continuous verification, least privilege access, […]
Continue reading
Reading Time: 11 minutes9 Introduction In a previous post, I walked through the step-by-step process of setting up a LAMP stack and deploying WordPress on Ubuntu. While that approach is great for learning the fundamentals, it can be time-consuming—especially if you’re just looking to get a blog online quickly. This post introduces a light-touch installer script that automates the entire process. […]
Continue reading
Reading Time: 6 minutes5 Introduction If you’re anything like me, you’ve probably joined a video call only to realise your lighting isn’t quite right. I use an Elgato Key Light Air, and I wanted it to turn on automatically when I joined a Microsoft Teams meeting—and off when I left. No more fumbling for the app or a physical […]
Continue reading
Reading Time: 10 minutes9 Introduction Like many home users, my broadband connection comes with a dynamically assigned public IP address. This means that my IP can change at any time sometimes without notice, which can be a problem when I want to access services hosted at home, like a self-hosted server or VPN. Instead of relying on a third-party Dynamic […]
Continue reading
Reading Time: 23 minutes21 Introduction Setting up a Site-to-Site VPN is a powerful way to securely link two remote networks—such as a home lab and a cloud environment—so they behave as if they’re on the same local network. While there are several technologies available to achieve this, choosing the right one often comes down to your specific network constraints and goals. […]
Continue reading
Reading Time: 9 minutes7 Introduction Azure Virtual Desktop (AVD) is Microsoft’s comprehensive Desktop-as-a-Service platform, enabling secure remote access to Windows desktops and apps from virtually anywhere. While powerful, deploying AVD in a robust, enterprise-ready manner can be complex: it requires careful orchestration of network, identity, security, storage, and user access. Manual configuration is time-consuming, error-prone, and difficult to scale or […]
Continue reading
Reading Time: 8 minutes7 Introduction A while back I wrote a post about my experience with getting my Microsoft Surface Laptop 7th Edition working with a clean install of Windows 11, you can see the post here: Microsoft Surface Laptop 7th Edition – Andy Kemp. Well I decided to look at this in more depth as I noticed when […]
Continue reading
Reading Time: 8 minutes4 Using Microsoft Cloud PKI With Always On VPN Introduction I have been playing around with Always On VPN recently. Using it with Domain, Hybrid and Entra Joined devices. As you will be aware Always on VPN heavily relies on Certificates and requires an Active Directory Certificate Services (ADCS) PKI infrastructure. When using Domain and or […]
Continue reading
Reading Time: 6 minutes3 This is part 5 of my Always On VPN series You can review the pervious posts if required: Introduction So we now have everything in place for Always On VPN. All we need to do now is to deploy the certificates and the VPN Profile to an Entra Joined device. There are 2 certificates needed […]
Continue reading