Reading Time: 14 minutes11 Introduction Over the past few years, I’ve seen a growing interest in Zero Trust but also a lot of confusion. Many still view it as a product you can buy or a feature you can switch on. In reality, Zero Trust is a mindset a strategic approach to security that requires continuous verification, least privilege access, […]
Continue reading
Reading Time: 9 minutes7 Introduction Azure Virtual Desktop (AVD) is Microsoft’s comprehensive Desktop-as-a-Service platform, enabling secure remote access to Windows desktops and apps from virtually anywhere. While powerful, deploying AVD in a robust, enterprise-ready manner can be complex: it requires careful orchestration of network, identity, security, storage, and user access. Manual configuration is time-consuming, error-prone, and difficult to scale or […]
Continue reading
Reading Time: 8 minutes7 Introduction A while back I wrote a post about my experience with getting my Microsoft Surface Laptop 7th Edition working with a clean install of Windows 11, you can see the post here: Microsoft Surface Laptop 7th Edition – Andy Kemp. Well I decided to look at this in more depth as I noticed when […]
Continue reading
Reading Time: 8 minutes4 Using Microsoft Cloud PKI With Always On VPN Introduction I have been playing around with Always On VPN recently. Using it with Domain, Hybrid and Entra Joined devices. As you will be aware Always on VPN heavily relies on Certificates and requires an Active Directory Certificate Services (ADCS) PKI infrastructure. When using Domain and or […]
Continue reading
Reading Time: 6 minutes3 This is part 5 of my Always On VPN series You can review the pervious posts if required: Introduction So we now have everything in place for Always On VPN. All we need to do now is to deploy the certificates and the VPN Profile to an Entra Joined device. There are 2 certificates needed […]
Continue reading
Reading Time: 12 minutes7 This is part 4 of my Always On VPN series You can review the pervious posts if required: Introduction The infrastructure you have in its current state is great if you’re still running everything from a Domain Joined perspective. If you are, then why? I don’t mean to sound patronising , pushing, arrogant, or maybe […]
Continue reading
Reading Time: 16 minutes9 This is part 3 of my Always On VPN series You can review the pervious posts if required: Introduction Now we have the certificates available the next step is to configure the certificates and then deploy and configure the servers. This part of the series will cover off configuring the certificates on the servers, installing […]
Continue reading
Reading Time: 10 minutes6 This is part 2 of my Always On VPN series You can review the pervious posts if required: Introduction Certificates are at the heart of Always On VPN as this is what is used to authenticate the user. Group Policy needs to be updated when deploying the certificates to servers and users via Active Directory. […]
Continue reading
Reading Time: 4 minutes2 This is part 1 of my Always On VPN series You can review the pervious posts if required: Introduction Always on VPN is a technology thats been around for some time now almost 10 years or so. It replaced Direct Access that enabled Windows 7 and Windows 8.1 (oh and 8) Enterprise clients to connect […]
Continue reading
Reading Time: 8 minutes5 Introduction I recently with picked up a Microsoft Surface Laptop with Copilot. I wanted to go throguh my frustrations with it to get a clean install of Windows 11 on there. It took a lot of trial and error, but I got there in the end. So if you are wanting to do a clean […]
Continue reading