This post has been republished via RSS; it originally appeared at: New blog articles in Microsoft Tech Community.
Hi there! You are reading the next issue of the Infrastructure + Security: Noteworthy News series!
As a reminder, the Noteworthy News series covers various areas, to include interesting news, announcements, links, tips and tricks from Windows, Azure, and Security worlds on a monthly basis.
|
Microsoft Azure |
|
Introducing Azure Arc (Ignite session recording) Azure Arc is a set of technologies that enables Azure data services and extends Azure management across your environment. For anyone who has Windows and Linux servers, Kubernetes clusters, and data services running across datacenters, edge, and multi-cloud, Azure Arc is definitely something you should learn about. Come to this session to learn about what it is, when to use it, and how it works. |
|
Azure Arc in action! (Ignite session recording) Join us in this theater session to checkout cool demos on Azure data services enabled by Azure Arc! See fast deploy, hyperscale, automation at scale, and more. |
|
Azure services now run anywhere with new hybrid capabilities: Announcing Azure Arc Since its origin, Azure has been built to enable seamless hybrid capabilities – and we continue to deliver on our customers’ needs to enable purposeful innovation. Two years ago, we delivered Azure Stack to enable a consistent cloud model, deployable on-premises. Over the past year, we’ve extended Azure to provide DevOps for any environment and any cloud, we enabled cloud-powered security threat protection for any infrastructure, and we unlocked the ability to run Microsoft Azure Cognitive Services AI models anywhere. Today, we take a significant leap forward to enable customers to move from just hybrid cloud to truly deliver innovation anywhere with Azure. On November 4th, we announced Azure Arc, a set of technologies that unlocks new hybrid scenarios for customers by bringing Azure services and management to any infrastructure. Azure Arc is available in preview starting November 4th. |
|
Inside Azure datacenter architecture with Mark Russinovich (Ignite session recording) Join Mark Russinovich, Azure CTO, to learn how Microsoft Azure enables intelligent, modern, and innovative applications at scale in the cloud, on-premises, and on the edge. Microsoft Azure has achieved massive, global scale, with more than 50 announced regions consisting of over 100 datacenters, and it is growing fast. It delivers the promise of cloud computing, including high-availability, extreme performance, and security, by custom designing software and hardware to work best together. Mark takes you on a tour of Azure datacenter architecture and implementation innovations, describing everything from Azure global infrastructure, to how we enable large-scale enterprise scenarios on both cloud and edge, and more. |
|
Azure Active Directory: New features and roadmap (Ignite session recording) For anyone working on or looking in to identity and access management in the cloud, come to this can't-miss session to get updates on Azure Active Directory and our vision and roadmap areas for identity in the next year. You'll hear about the newest features and experiences that provide seamless access for any identity, protect your organization from breaches, and use the latest open standards. |
|
Migrating IaaS workloads to Azure (Ignite session recording) Now that the migration of their server hosts from Windows Server 2008 R2 to Windows Server 2019 is complete, Tailwind Traders wants to begin the process of “lift and shift”: migrating some of their on-premises VMs they’ve been running in their datacenter. In this session, learn about how Tailwind Traders began the process of migrating some of their existing VM workloads to Azure and how this allowed them to retire aging server hardware and close datacenter and server rooms that were costing the organization a substantial amount of money. |
|
Keeping costs down in Azure (Ignite session recording) Tailwind Traders wants to keep the costs of running their workloads in Azure predictable and within the organization's spending limits. In this session, learn about the factors that go into Azure costs and hear some tips and tools to keep costs manageable - from using Azure calculators and setting spending limits and quotas to utilizing tagging to identify cost owners. |
|
What's new in Azure Networking (Ignite session recording) Cloud networking is evolving and so is Azure Networking. Learn about our new announcements, an overview of our most recent enhancements and a sneak peek into the future of networking and security. |
|
Azure Portal: 10 tips to get more out of Azure (Ignite session recording) If you're new to Azure or a seasoned Azure user, come learn everything that's new in the Azure Portal to be more productive managing Azure resources. We also walk you through tips and tricks for creating and managing your resources efficiently. |
|
Azure governance and management (Ignite session recording) Tailwind Traders’ deployments are occurring in an ad hoc manner, primarily driven by lack of protocol and unapproved decisions by various operators or employees. Some deployments even violate the organization's compliance obligations, such as being deployed in an unencrypted manner without DR protection. After bringing their existing IaaS VM fleet under control, Tailwind Traders wants to ensure future deployments comply with policy and organizational requirements. In this session, walk through the processes and technologies that will keep Tailwind Traders’ deployments in good standing with the help of Azure Blueprints, Azure Policy, role-based access control (RBAC), and more. |
|
Windows Admin Center: What’s new and what’s next (Ignite session recording) Get an inside look at what’s new in the latest public release of Windows Admin Center for modern remote management of your Windows Servers. Through lots of demos, see how you can benefit from a variety of user-driven enhancements and new features. Learn about what’s on the horizon for Windows Admin Center Insiders, and see how your feedback directly contributes to the reimagining of server management. |
|
Windows Server: What's new and what's next (Ignite session recording) Hear what's new in the latest release of Windows Server and our team's vision for what's next. This session covers the product roadmap and demos some exciting new capabilities. Whether you run Windows Server in an Azure virtual machine or on-premises, build your future with Windows Server 2019. |
|
Migrating to Windows Server 2019 (Ignite session recording) Tailwind Traders has acquired Northwind, a large subsidiary company. Northwind currently has 1500 servers running Windows Server 2008 R2 - either directly or virtually - on hardware at the midpoint of its operational lifespan. While Tailwind Traders will eventually move many of these workloads to Azure, Windows Server 2008 R2 end of life is quickly approaching. In this session, learn how Tailwind Traders’ used Azure hybrid management technologies to migrate servers, and the roles that they host, to Windows Server 2019. |
|
Windows Server deep dive: Demopalooza (Ignite session recording) In this action-packed demopalooza, Principal Program Manager Jeff Woolsey dives into the technical details of what makes Windows Server 2019 an exciting platform for developers and IT pros looking to modernize their applications and infrastructure. Windows Server 2019 is hybrid at its core and secure by design, with application innovation and hyper-converged infrastructure built into the platform, backed by the world's most trusted cloud, Azure. |
|
Introducing the new Performance Monitor for Windows As the administrator of Windows computers and servers, you deserve the best tools to understand how features, apps, and devices are working. When you need to troubleshoot why something is slow or broken, there’s no source of truth more trusty or versatile than Windows performance counters. The classic user interface for perf counters, Performance Monitor or perfmon.exe, hasn’t changed much since it was added to Windows in 1993. (That’s right – over 25 years ago!) It’s difficult to learn and time-consuming to use. It could be way, way better. We’re excited to introduce a reimagined Performance Monitor... |
|
Windows Autopilot: White glove pre-provisioning (Ignite session recording) Windows Autopilot offers a “white glove” service that enables you (or your partner or OEM) to pre-provision a Windows 10 PC and deliver it to your users fully configured and business-ready. Come see the Windows Autopilot white glove pre-provisioning process in action in this live demo. |
|
Windows Virtual Desktop overview (Ignite session recording) Windows Virtual Desktop offers the best virtualized desktop and application experience for both end users and IT. Learn how early adopters have already experience the value of Windows Virtual Desktop in their organizations, get updates on our future plans, and, most importantly, see the service in action! |
|
Learn about our new desktop virtualization service, Windows Virtual Desktop, including guidance on how to set up your environment on Azure. We also dive into considerations for global deployments, latency and end user experience, and general best practices. |
|
What is Microsoft Managed Desktop? (Ignite session recording) Microsoft Managed Desktop not only enables Microsoft 365 consumption through faster onboarding and deployment, the service ensures the platform and applications remain always up-to-date with the latest features and quality updates while securing and monitoring devices too. This session provides an overview of the Microsoft Managed Desktop Service including the offering evolution, key elements of the value prop and the solution components, technology prerequisites, the partner ecosystem, and how to find out more about the offering. |
|
Top ten best security practices for Azure today (Ignite session recording) With more computing environments moving to the cloud, the need for stronger cloud security has never been greater. But what constitutes effective cloud security for Azure, and what best practices should you be following? In this overview session, learn about ten Azure security best practices, discover the latest Azure security innovations, including Azure Sentinel and what's new in Azure Security Center, and real-life security principles from an Azure customer. |
|
Azure security fundamentals (Ignite session recording) Tailwind Traders wants to improve the security of their workloads that are running in the cloud. In this session, learn how to use: Azure Security Center to determine how to configure Azure resources (using security best practices), Azure Sentinel to locate and respond to suspicious activity, and Azure Bastion for secure administrative connections into Azure. |
|
Secure your virtual machines in Azure today (Ignite session recording) You just migrated to Azure and now you need to secure them. Learn how to secure identity, compute, networking and storage. Take advantage of Azure Security Center and Secure Score to guide you, turn on threat protection and make sure you are protecting public IP addresses with technologies like Azure Firewall and the WAF. Take advantage of policies to apply secure at scale and don’t forget to use update management. This session will give you best practices you need specifically targeting virtual machines |
|
Modernize your SIEM in the cloud with Azure Sentinel (Ignite session recording) As the value of digital information increases, so do the number and sophistication of cyberattacks. Traditional SIEM products are failing to protect today's infrastructure from the volume and speed of threats and spend too much time and money in tasks like set up and maintenance. Join us in this expert-led discussion on how to take a cloud-centric approach to address these traditional challenges. Learn how Azure Sentinel, a cloud-native SIEM, empowers organizations to be more secure and more productive, and the unique benefits Microsoft provides with built-in AI capabilities. This session provides an overview of Azure Sentinel and how to get started in your SOC, collect data across all sources, detect threats, and reduce alerts. |
|
Get instant value from your SIEM: Best practices for Azure Sentinel (Ignite session recording) This session deep dives into the steps to get Azure Sentinel, Microsoft’s cloud-native SIEM solution, up and running quickly. We share workspace and data collection options, architecture, and best practices. Next, learn how to leverage built-in analytics to quickly enable alerting on your data. Lastly, we show you how to start automating response with SOAR capabilities. |
|
Unleash the hunter in you: Advanced hunting in Microsoft Defender ATP (Ignite session recording) Microsoft Defender Advanced Threat Protection gives incident responders insights into endpoint activity they've always wished they had when incidents occur. In this session, learn how to use advanced hunting to gain insights into endpoint data going far beyond just responding to alerts. |
|
As our customers are continually challenged with advanced cyber threats and complex environments to protect, we are empowering security practitioners to fight back with Microsoft's unified endpoint security platform for preventative protection, post-breach detection, automated investigation, and response. Join this session to learn about the latest innovations to protect against 0-days, advanced attacks, and data breaches and provide SecOps with the tools they need to respond to security incidents. Get an update on our latest market leading capabilities in endpoint security that set us apart from the competition. |
|
A world without passwords (Ignite session recording) Anyone who uses the internet knows the hassles of using a login name and password to access their own information. The username/password paradigm is more than a hassle, it’s a true security challenge. Learn how the security pros in Microsoft Core Services Engineering and Operations (CSEO)—the experts who build, deploy, and operate the systems that run Microsoft—are nearing the end of their journey to eliminate passwords for employees. Walk away with a framework to do the same in your own organization using the capabilities of Azure Active Directory, including steps for building a banned password list, setting a password renewal time rotation (as in never!), how to employ multi-factor authentication (MFA), advice for modernizing your hardware, and tackling challenges in eliminating legacy authentication. |
|
Whether you're solving a particular pain point or looking to defend against threats across your estate, get up and running swiftly to prevent, detect, and remediate today's sophisticated attacks. Learn from experts at Microsoft whose job it is to help customers deploy Microsoft Defender Advanced Threat Protection (ATP), Office 365 ATP, Azure ATP, and Microsoft Threat Protection all-up. |
|
Accelerating deployment of Microsoft Information Protection solutions (Ignite session recording) You deal with sensitive data in your day-to-day business and you may be at different stages of your information protection journey. Join us to learn and discuss the best approach, along with tips and tricks to get started with information protection, regardless of where you are in your journey. This session focuses on key Microsoft Information Protection solutions, including Azure Information Protection, Office 365 Information Protection solutions (e.g. Office 365 DLP) and other related technologies. While deployment is important, making information protection a part of your company culture may be challenging. Users who are working on sensitive data need to know that now there's a simple, intuitive process to secure sensitive data. Get some ideas on how you can maximize secure behavior in your users with minimal friction. |
|
Learn about the key Microsoft Information Protection capabilities and integrations that help you better protect your sensitive data, through its lifecycle. The exponential growth of data and increasing compliance requirements makes protecting your most important and sensitive data more challenging than ever. We'll walk you through the latest capabilities to discover, classify & label, protect and monitor your sensitive data, across devices, apps, cloud services and on-premises. We'll discuss configuration and management experiences that makes it easier for security admins, as well as end-user experiences that help balance security and productivity. Our latest capabilities help provide a more consistent and comprehensive experience across Office applications, Azure Information Protection, Office 365 Data Loss Prevention, Microsoft Cloud App Security, Windows and beyond. |
|
Microsoft Information Protection - Ignite 2019 recap Ignite 2019 is now over and it was a great event and the biggest one for Microsoft Information Protection this year. As Microsoft Information Protection is a solution for consistent labeling across all Microsoft 365 platform, we have many partners that collaborate and announce their investments and releases. This year we had major announcements from Microsoft 365 Security and Compliance, Office 365, SharePoint, Azure Information Protection, PowerBI and many more. Take a look at a short recap and references to all the great updates that was announced for Microsoft Information Protection during Ignite 2019. |
|
Shut the door to cybercrime with identity-driven security (Ignite session recording) Today, in most organizations, there exists an abundance of security solutions and yet what will actually make you secure remains obscure. Come to this session to get your much needed answers on the steps you can quickly take to protect yourself against the most prevalent current and emerging threats! |
|
Responding to incidents (Ignite session recording) In this session, we will explore incident management best practices - through the lens of Tailwind Traders - that will help you triage, remediate, and communicate as effectively as possible. We also walk through some of the tools Azure provides to get you back into a working state when time is of the essence. |
|
Microsoft's roadmap for security, compliance, and identity (Ignite session recording) This session covers how Microsoft can help you with your security, identity, and compliance needs. Come hear Kirk Koenigsbauer share Microsoft's strategy and investments with special guests including Ann Johnson, from Microsoft's Cybersecurity Solutions Group, and Bret Arsenault, Microsoft's CISO. |
|
Ignite 2019 releases for Azure Security Center and Azure platform security With Azure Security Center our goal is to protect every cloud workload and we have made progress to that goal with new support for containers, and SQL in virtual machines. You’ll be pleased to know that we now include Qualys vulnerability assessment for no additional fee in Azure Security Center standard edition so that you have a richer set of security recommendations. We are further extending Azure Security Center to include partner recommendations with Check Point, Tenable and CyberArk shipping integrations today. We continue to focus on making sure you can maximize your valuable time addressing important security issues with new quick fix capabilities so that you can secure multiple items at once far faster than before, custom policy support, simplifications in secure score including making it a percentage, and more. On the Azure platform side we have extended Azure Customer Lockbox beyond virtual machines, made it easier to encrypt virtual machine disks directly from the portal, simplified certificates for web sites on custom domains and released a new tool called the Microsoft Secure Code Analysis toolkit to help you build secure code. |
|
Detecting cloud native attacks and automating remediation (Ignite session recording) In this session we cover a breadth of unique cloud threat detections that we’ve built into Microsoft’s CASB such as suspicious mail forwarding rules, risky OAuth apps and malware detection. Then, we show you how you can easily automate remediation with custom workflows, using the systems of your choice. |
|
Microsoft Cloud App Security news at Ignite 2019 Ignite is one of the key moments for Microsoft every year and packed with exciting feature announcements and product launches. Since Ignite 2018 we have released more than 100 new capabilities and updates for Microsoft Cloud App Security, seen an incredible growth in our customer base, and were repeatedly recognized by leading analyst firms - so we’re excited to share our latest news with you. The development of our Cloud Access Security Broker (CASB) is built on a set of core principles that guide us in building the best possible solution for our customers that supports them in better protecting their entire ecosystem of apps and cloud resources. We are happy to announce a breadth of new capabilities across Discovery, Threat Detection and Information Protection. |
|
Zero Trust strategy — what good looks like Microsoft believes that the Zero Trust strategy should be woven throughout your organization’s architectures, technology selections, operational processes, as well as the throughout the culture of your organization and mindset of your people. Zero Trust will build on many of your existing security investments, so you may already have made progress on this journey. Microsoft is publishing learnings and guidance from many perspectives to help organizations understand, anticipate, and manage the implications of this new strategy. This guidance will continue to grow as we learn more. |
|
Join this demo-intensive session to learn the best end-to-end deployment strategy for Extended Security Updates (ESUs), including preparing devices for receiving ESUs in both on-premises (connected/proxy) and cloud environments. Find out how to continue to leverage Configuration Manager or other update management software to effectively deliver ESUs to your devices. Learn about managing multi-year ESU subscriptions on client, server, and mixed environments and simplifying the ESU process for Azure hosted virtual machines (VMs), which do not require any special ESU subscriptions. |
|
Plan for Z-Day 2020: Windows Server 2008 end of support is coming! (Ignite session recording) Windows Server 2008 still roams the earth. Support ends on January 14th: Z-Day! Learn how to migrate off legacy infrastructure machines with the Storage Migration Service, in-place upgrades, cluster rolling upgrades, and Azure Migrate. Modernize your on-premises workloads, explore Azure IaaS options, and get insider information on the roadmap. Watch Ned battle your servers that are going end-of-support with just a few clicks! |
|
Microsoft Extending End of Support for Exchange Server 2010 to October 13th, 2020 After investigating and analyzing the deployment state of an extensive number of Exchange customers we have decided to move the end of Extended Support for Exchange Server 2010 from January 14th 2020 to October 13th 2020. Our commitment to meeting the evolving needs of our customers is as strong as ever, and we recognize discontinuing support for a product that has been as popular and reliable as Exchange Server 2010 can be an adjustment. We also know that some of you are in the midst of upgrades to a newer version of Exchange Server on-premises, or more transformative migrations to the cloud with Office 365 and Exchange Online. With this in mind, we are extending end of support to October 13th 2020 to give Exchange Server 2010 customers more time to complete their migrations. This extension also aligns with the end of support for Office 2010 and SharePoint Server 2010. |
|
Windows 7 support will end on January 14, 2020 Microsoft made a commitment to provide 10 years of product support for Windows 7 when it was released on October 22, 2009. When this 10-year period ends, Microsoft will discontinue Windows 7 support so that we can focus our investment on supporting newer technologies and great new experiences. The specific end of support day for Windows 7 will be January 14, 2020. After that, technical assistance and automatic updates that help protect your PC will no longer be made available for the product. Microsoft strongly recommends that you move to Windows 10 sometime before January 2020 to avoid a situation where you need service or support that is no longer available. |
|
Extended Security Updates for SQL Server and Windows Server 2008/2008 R2: Frequently Asked Questions (PDF) On January 14, 2020, support for Windows Server 2008 and 2008 R2 will end. That means the end of regular security updates. Don't let your infrastructure and applications go unprotected. We're here to help you migrate to current versions for greater security, performance and innovation. |
|
Check out Microsoft Services public blog for new Proactive Services as well as new features and capabilities of the Services Hub, On-demand Assessments, and On-demand Learning platforms. |