Add email alias via Atribute Editor in Active Directory

 In my case, in a mixed environment, I can't add an alias via Exchange online, and we don't have an exchange on promises.

AD Sync pushes the attributes from AD to 365 so... if you no longer have an on-prem Exchange server, that's fine... use Active Directory's attribute editor like you did before Exchange started allowing these aliases added directly in the EAC. Jump into your domain controller, open ADUC and open the user. Click the Attribute Editor and add your aliases there. 

Email address type update failed

Error:

Error executing request. An Azure Active Directory call was made to keep object in sync between Azure Active Directory and Exchange Online. However, it failed. Detailed error message: Unable to update the specified properties for on-premises mastered Directory Sync objects or objects currently undergoing migration. DualWrite (Graph) RequestId: 9ee1a32f-ae47-4171-ad6b-ed0a1956a05e The issue may be transient and please retry a couple of minutes later. If issue persists, please see exception members for more information.

To add an alias email we have to navigate to the attribute editor, if you can't see this tab, its probably because Advanced Fitures is not enabled.  You can do this by clicking on the View menu button, and in the drop-down, click on Advanced Features, which will put a tick next to it. Once enabled, you will see more folders in Active Directory appear.

Double-click on proxyAddresses and add in the address. You need to add SMTP: before the address,no spaces, for example, smtp:user@mycompany.com  

Forcing a sync or simply wait  

You can wait for autoreplication or force an Azure AD Sync. On the server where you have Azure AD connect installed, open up an elevated PowerShell window and type in the command below to force a sync:

Start-ADSyncSyncCycle -PolicyType Delta




Clever malvertising attack uses Punycode to look like KeePass’s official website

Another example for IT guys. Internal repositories for software installers offer increased security, control, efficiency, and cost optimization for organizations. They create a safer and more reliable software environment for employees, while also aiding in compliance efforts.

By Malwarebytes lab

Threat actors are known for impersonating popular brands in order to trick users. In a recent malvertising campaign, we observed a malicious Google ad for KeePass, the open-source password manager which was extremely deceiving. We previously reported on how brand impersonations are a common occurrence these days due to a feature known as tracking templates, but this attack used an additional layer of deception.

The malicious actors registered a copycat internationalized domain name that uses Punycode, a special character encoding, to masquerade as the real KeePass site. The difference between the two sites is visually so subtle it will undoubtedly fool many people.

We have reported this incident to Google but would like to warn users that the ad is still currently running.

A detailed article by Malwarebytes here: https://www.malwarebytes.com/blog/threat-intelligence/2023/10/clever-malvertising-attack-uses-punycode-to-look-like-legitimate-website

Enable archive mailboxes for all users whose archive mailbox isn't already enabled.

Well known issue, that you can solve easily by running simple command in powershell:

Get-Mailbox -Filter {ArchiveStatus -Eq "None" -AND RecipientTypeDetails -eq "UserMailbox"} | Enable-Mailbox -Archive

Done :)

Please notice , to be able to do so you have to Connect to Exchange Online PowerShell.

 

This is as well useful option to Enable auto-expanding archiving

 

 

Show all users, include local, in Windows login Screen

Windows 10 and 11

If the list of local users is not displayed on the computer logon screen, check the settings of the following local Group Policy options (use the gpedit.msc):

• Interactive Logon: Do not display last signed-in = Disabled (Computer Configuration -> Windows Settings -> Security Settings -> Local Policies -> Security Options);
• Enumerate local users on domain-joined computers = Enabled (Computer Configuration -> Administrative Templates -> System -> Logon)
• Do not enumerate connected users on domain-joined computer = Disabled/Not Configured (in the same GPO section)

 

 

How to find your Windows product key

 Type this command at the prompt:

wmic path softwareLicensingService get OA3xOriginalProductKey

 

  Type this command at the PowerShell:

 powershell "(Get-WmiObject -query 'select * from SoftwareLicensingService').OA3xOriginalProductKey"

 

 

 

 

Type regedit into the Windows 10 desktop search, and select the appropriate item in the results. Navigate to this key:

Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SoftwareProtectionPlatform

 

 the BackupProductKeyDefault key will reveal a valid Windows key ( Windows 10)

Fix issues related to windows. SFC and DISM commands

 

Commands that I use at least once a week.

Perform SFC Scan and Repair Windows Image
-This process will perform scan for any corrupted system files or integrity violation and will attempt to repair it along with the Windows Image.

1. Open command prompt with administrator access
2. Type each command below and wait until scan is completed.

SFC /scannow
DISM /Online /Cleanup-Image /CheckHealth
DISM /Online /Cleanup-Image /ScanHealth
DISM /Online /Cleanup-Image /RestoreHealth 

 

Please see other article about Optimal Order for Running DISM and SFC

HOW TO DISABLE THE SEND YOUR SEARCH HISTORY FEATURE IN MICROSOFT EDGE

Microsoft Edge can silently send search queries, demographics, and other data to Microsoft servers. Moreover, not only search data in Bing, but also search data in Google, DuckDuckGo, 
StartPage and other search engines.  

Typically, Edge warns the user about this literally in plain text. 

Or rather, a separate notice that states that the user now has the opportunity to help Microsoft improve its products and services, and that for this purpose it will collect his (the user’s) search data, but as if anonymously, that is, they “will never will be associated with the data of the user himself or his computer." The option that the user allows the company to collect this data is present in the open part of the Edge settings (in the “Optional diagnostic data” subsection) and is active by default. Simply put, if you use Microsoft Edge, you are already helping, and volunteering at that. 

WHERE TO CHECK AND HOW TO DISABLE THE FUNCTION OF SENDING YOUR SEARCH HISTORY IN MICROSOFT EDGE 

Taking into account the fact that in the mentioned notification there is a button that redirects to the browser settings, but you can only get to the main Settings page, we do the following: open Edge and continue: or copy the address into the search bar 

edge://settings/privacy#searchServiceImprovement 

and press Enter (at this address the subsection we need “Optional diagnostic data” should open automatically); 

 or open “Settings” Edge (3 buttons in the upper right corner of the screen > “Settings”), go to the “Privacy” section. search and services" and simply scroll down the screen to the Optional diagnostic data subsection: Turn off the option Send us optional diagnostic data about your browser usage, websites visited, and crash reports to help us improve Microsoft products ; and restart the browser. 

 WHAT DATA DOES EDGE SEND TO MICROSOFT? 

In response to this question, we can only quote an excerpt from the explanation, which was published on the official Edge Support page: We collect and use data from your searches in Microsoft Edge. We use your search results to make everyone's online experience more convenient, relevant and useful. We collect data from your online searches, including from sites that Microsoft does not own or control. The data collected may include your search query, the search results displayed, and your interaction with those search results, such as what links you click on. We may also collect demographic information. Of course, there is a strong suspicion that this is not all. But Microsoft support, as we see, clearly identified four elements: search queries, searching results, search interaction data (including links you click) and your demographics. And the company needs this information “To improve your experience in Microsoft Edge, Microsoft Bing, Microsoft News and other Microsoft services.”