Jeff Alexander's Weblog

Download the MAP Toolkit 8.5 Beta!

2013-05-22T01:31:33Z

Are you looking to move to Windows Server 2012? Then accelerate this move with MAP Toolkit 8.5 beta which is available now for download. There is a bunch of new stuff in this release so make sure you check it out.

What’s New?

Newly designed user interface

The MAP Toolkit 8.5 Beta features a newly designed user interface which provides a more intuitive user experience. Scenarios have been organized into Scenario Groups to allow quick navigation and display at-a-glance summaries on individual scenario tiles. Details for each scenario can be found in the Scenario Detail Pages along with a checklist of steps needed to maximize your results and enable one-click report generation.

Lync 2013, SharePoint 2013, and Exchange 2013 Usage Tracking Support

Groundbreaking new releases of Lync, SharePoint, and Exchange have been brought to market this year. These products provide IT organizations and their end users greater efficiency, productivity and flexibility than ever before. With the release of the MAP Toolkit 8.5 Beta, the usage tracking scenarios within MAP have been updated to leverage new usage tracking capabilities provided within Lync, SharePoint, and Exchange resulting in less administrative effort and greater accuracy to collect and report on end user access to these servers.

Enhanced Virtual Machine discovery

Server virtualization has become the standard method for optimizing an organization's resource utilization, availability, and agility. The MAP Toolkit 8.5 Beta assists in the effort to virtualize with added discoverability of virtual machines for software asset location and reporting to facilitate license compliance for highly virtualized environments. Additionally, the MAP Toolkit now includes enhanced inventory reports which detail the virtual machines discovered, as well as the total number of virtual machines running on each host.

Windows Volume Licensing scenario helps to Identify license status of computers running Windows Vista SP1 and newer

Microsoft Volume Licensing gives you flexible, cost-effective access to the Microsoft products and services that your business is built upon. The MAP Toolkit 8.5 Beta provides the ability to detect and report on the volume license status of client computers in your enterprise so you can rest assured that you are in full compliance with your volume license agreement.

Jeffa

Technorati Tags: MAP,Solution Accelerators

XBOX One Revealed: #want

2013-05-21T23:54:42Z

In case you live under a rock or just didn’t hear the news; the XBOX One was revealed overnight. Watch the full reveal here and for more nitty gritty detail check out Wired magazine’s exclusive review.

All I can say is #want!!

Jeffa

Technorati Tags: Want,XboxOne

Download an Evaluation to win a Lenovo X1 Carbon Touch!

2013-05-20T02:00:23Z

I have a very simple competition for you. All you have to do is download an evaluation of either Windows Server 2012 or System Center 2012 SP1 and you could win a Lenovo X1 Carbon Touch! I have one of these babies as my primary work laptop and it’s simple awesome! Mine runs Windows 8 has a Core i7 processor, 8GB of RAM and a 240GB SSD. Below is my WinSAT score just to get an idea.

For more details of this great offer make sure you check out the following website.

http://technet.microsoft.com/en-au/dn175479.aspx

Good luck!

Jeffa

Technorati Tags: Competition,Lenovo

Microsoft Security Bulletin: May 2013 Release!

2013-05-16T07:07:51Z

Welcome to another security bulletin release. This month we have 10 security bulletin updates plus a firmware update for Surface RT and Surface Pro. The great thing about the new Surface Pro firmware update is we now support PXE booting with the Surface Pro Ethernet adapter. This will be great for enterprises to get a custom image on the device! Below is a table that outlines this month’s bulletins.

Bulletin ID	Bulletin Title and Executive Summary	Maximum Severity Rating & Vulnerability Impact	Restart Requirement	Affected Software
MS13-037	Cumulative Security Update for Internet Explorer This security update resolves eleven privately reported vulnerabilities in Internet Explorer. The most severe vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker who successfully exploited the most severe of these vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.	Critical Remote Code Execution	Requires restart	Microsoft Windows, Internet Explorer
MS13-038	Security Update for Internet Explorer This security update resolves one publicly disclosed vulnerability in Internet Explorer. The vulnerability could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker who successfully exploited this vulnerability could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.	Critical Remote Code Execution	May require restart	Microsoft Windows, Internet Explorer
MS13-039	Vulnerability in HTTP.sys Could Allow Denial of Service This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow denial of service if an attacker sends a specially crafted HTTP packet to an affected Windows server or client.	Important Denial of Service	Requires restart	Microsoft Windows
MS13-040	Vulnerabilities in .NET Framework Could Allow Spoofing This security update resolves one privately reported vulnerability and one publicly disclosed vulnerability in the .NET Framework. The more severe of the vulnerabilities could allow spoofing if a .NET application receives a specially crafted XML file. An attacker who successfully exploited the vulnerabilities could modify the contents of an XML file without invalidating the file's signature and could gain access to endpoint functions as if they were an authenticated user.	Important Spoofing	May require restart	Microsoft Windows, Microsoft .NET Framework
MS13-041	Vulnerability in Lync Could Allow Remote Code Execution This security update resolves a privately reported vulnerability in Microsoft Lync. The vulnerability could allow remote code execution if an attacker shares specially crafted content, such as a file or program, as a presentation in Lync or Communicator and then convinces a user to accept an invitation to view or share the presentable content. In all cases, an attacker would have no way to force users to view or share the attacker-controlled file or program. Instead, an attacker would have to convince users to take action, typically by getting them to accept an invitation in Lync or Communicator to view or share the presentable content.	Important Remote Code Execution	May require restart	Microsoft Lync
MS13-042	Vulnerabilities in Microsoft Publisher Could Allow Remote Code Execution This security update resolves eleven privately reported vulnerabilities in Microsoft Office. The vulnerabilities could allow remote code execution if a user open a specially crafted Publisher file with an affected version of Microsoft Publisher. An attacker who successfully exploited these vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.	Important Remote Code Execution	May require restart	Microsoft Office
MS13-043	Vulnerability in Microsoft Word Could Allow Remote Code Execution This security update resolves one privately reported vulnerability in Microsoft Office. The vulnerability could allow code execution if a user opens a specially crafted file or previews a specially crafted email message in an affected version of Microsoft Office software. An attacker who successfully exploited this vulnerability could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.	Important Remote Code Execution	May require restart	Microsoft Office
MS13-044	Vulnerability in Microsoft Visio Could Allow Information Disclosure This security update resolves a privately reported vulnerability in Microsoft Office. The vulnerability could allow information disclosure if a user opens a specially crafted Visio file. Note that this vulnerability would not allow an attacker to execute code or to elevate their user rights directly, but it could be used to produce information that could be used to try to further compromise an affected system.	Important Information Disclosure	May require restart	Microsoft Office
MS13-045	Vulnerability in Windows Essentials Could Allow Information Disclosure This security update resolves a privately reported vulnerability in Windows Essentials. The vulnerability could allow information disclosure if a user opens Windows Writer using a specially crafted URL. An attacker who successfully exploited the vulnerability could override Windows Writer proxy settings and overwrite files accessible to the user on the target system. In a web-based attack scenario, a website could contain a specially crafted link that is used to exploit this vulnerability. An attacker would have to convince users to visit the website and open the specially crafted link.	Important Information Disclosure	May require restart	Microsoft Windows Essentials
MS13-046	Vulnerabilities in Kernel-Mode Drivers Could Allow Elevation Of Privilege This security update resolves three privately reported vulnerabilities in Microsoft Windows. The vulnerabilities could allow elevation of privilege if an attacker logs on to the system and runs a specially crafted application. An attacker must have valid logon credentials and be able to log on locally to exploit these vulnerabilities.	Important Elevation of Privilege	Requires restart	Microsoft Windows

That’s about it guys. Make sure you apply these updates where appropriate.

Jeffa

Technorati Tags: Patching,Updates,WSUS

TechEd Australia 2013: Call for Topics is Live!

2013-05-15T02:43:26Z

Welcome to my first email regarding TechEd Australia 2013! This year I’m looking after content again and today I like to announce that call for topics is now open for submissions. This is the first of many milestones on the journey to this event in September. I believe good content is what makes an event such as TechEd possible and we rely on the expertise and creativity of our speakers to make a successful event.

So please submit your sessions using the Call for Topics tool at: http://techedau.cft.hubb.me

Every year at TechEd we have a theme and this year is no different. Last year was a huge launch year so we focused mainly on all the new products such as Windows Server 2012 and Windows 8. This year it’s about getting those products deployed and developing great apps for Windows 8 and Windows Phone. With in mind we are focusing on 2 broad themes.

Developing Windows 8 and Windows Phone apps
Deployment of Windows Server 2012, System Center 2012 SP1, Windows 8 and Office 2013
Building apps for Windows 8

With that in mind we have reduced the number of tracks down to 9 this year. Below are a list of the tracks we will have this year.

Architecture and trustworthy Computing
Windows Azure Application Development
Data Platform and Business Intelligence
Developer Tools & Application Lifecycle Management (ALM)
Office, Office 365 and SharePoint
Modern Datacenter
Exchange and Lync
Windows Client, Access & Management
Windows Phone

Now you may notice the absence of tracks that we have had in the past. We have consolidated the Windows Server, Virtualization and Management tracks into the Modern Datacenter track. So if you are submitting sessions on those topics then submit them to the Modern Datacenter track.

The Call for Topics tool is open from today; May 15th 2013 until Monday June 17th 2013. Get those creative juices going and start submitting sessions. When you are submitting sessions please keep the following in mind:

To enhance the success of your session submission, please prepare your content to ensure it provides TechEd attendees with comprehensive technical readiness to inspire and succeed in their career. Your content should also align to meet the content themes for TechEd 2013, which are:

For Developers: TechEd is the place to get ready to create Windows 8 and Windows Phone Apps.

For IT Professionals: TechEd will provide an accelerated path to the skills they need to for deployment of Windows 8, Windows Server 2012, System Center 2012, Office 2013 and the Hybrid cloud.

Submissions that compliment the TechEd 2013 content themes will be recognized throughout the approval process.

Below are some additional tips for a successful submission:

Abstracts should be limited to 300 words
Be sure to showcase your speaking experience
A succinct and descriptive session title is a must to engage attendees and should match the delivered content 100%
Session objectives should indicate clearly what a delegate will gain from attending the session
Build your presentations with 60-65 mins of content and allow 10-15 mins for Q&A
TechEd is about technical readiness so focus on the technology and ensure there is no blatant marketing in your content

Good luck with your submissions and we look forward to see some great sessions submitted!

Jeffa

Technorati Tags: TechEd Australia,Call for Topics,CFT

The new Nokia Lumia 925!

2013-05-14T23:33:09Z

Damn and I just got a new Lumia 920! Click here to watch the press release of the new Lumia.

Jeffa

Technorati Tags: Lumia,Windows Phone

Windows Azure Active Directory Cartoon!

2013-05-07T01:15:22Z

I found this really cool animation the other day that is great at explaining exactly what Windows Azure AD is and how it’s different to on premise Active Directory that we have all been familiar with for years.

Jeffa

Technorati Tags: Azure,Cloud,Azure AD

Acer Aspire R7: A Notebook designed for touch….

2013-05-06T03:00:13Z

I don’t normally post marketing ads but this is too cool not to share! I’m not sure about where they put the trackpad on this thing though..

Jeffa

Technorati Tags: Touch,Windows 8

Make the Switch: New Windows Phone Ad!

2013-04-30T04:06:17Z

The recently released Windows Phone add made me laugh. Worth a look!

Jeffa

Technorati Tags: Windows Phone,Nokia,Lumia

Microsoft Security Bulletin: April 2013 Release!

2013-04-10T00:19:03Z

Welcome to another security bulletin update! This month we have 9 bulletins and I have posted the details below. Make sure you consider these in your environments and update where appropriate. And if you have a Surface RT device there is another update available to improve Wi-Fi reliability.

MS13-028 - Cumulative Security Update for Internet Explorer (2817183)

This security update resolves two privately reported vulnerabilities in Internet Explorer. These vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Internet Explorer. An attacker who successfully exploited these vulnerabilities could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Maximum Severity Rating - Critical
Vulnerability Impact - Remote Code Execution
Restart Requirement - Requires restart
Affected Software - Microsoft Windows, Internet Explorer

MS13-029 - Vulnerability in Remote Desktop Client Could Allow Remote Code Execution (2828223)

This security update resolves a privately reported vulnerability in Windows Remote Desktop Client. The vulnerability could allow remote code execution if a user views a specially crafted webpage. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

Maximum Severity Rating - Critical
Vulnerability Impact - Remote Code Execution
Restart Requirement - May require restart
Affected Software - Microsoft Windows

MS13-030 - Vulnerability in SharePoint Could Allow Information Disclosure (2827663)

This security update resolves a publicly disclosed vulnerability in Microsoft SharePoint Server. The vulnerability could allow information disclosure if an attacker determined the address or location of a specific SharePoint list and gained access to the SharePoint site where the list is maintained. The attacker would need to be able to satisfy the SharePoint site's authentication requests to exploit this vulnerability.

Maximum Severity Rating - Important
Vulnerability Impact - Information Disclosure
Restart Requirement - May require restart
Affected Software - Microsoft Office, Microsoft Server Software

MS13-031 - Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (2813170)

This security update resolves two privately reported vulnerabilities in Microsoft Windows. The vulnerabilities could allow elevation of privilege if an attacker logs on to the system and runs a specially crafted application. An attacker must have valid logon credentials and be able to log on locally to exploit these vulnerabilities.

Maximum Severity Rating - Important
Vulnerability Impact - Elevation of Privilege
Restart Requirement - Requires restart
Affected Software - Microsoft Windows

MS13-032 - Vulnerability in Active Directory Could Lead to Denial of Service (2830914)

This security update resolves a privately reported vulnerability in Active Directory. The vulnerability could allow denial of service if an attacker sends a specially crafted query to the Lightweight Directory Access Protocol (LDAP) service.

Maximum Severity Rating - Important
Vulnerability Impact - Denial of Service
Restart Requirement - Requires restart
Affected Software - Microsoft Windows

MS13-033 - Vulnerability in Windows Client/Server Run-time Subsystem (CSRSS) Could Allow Elevation of Privilege (2820917)

This security update resolves a privately reported vulnerability in all supported editions of Windows XP, Windows Vista, Windows Server 2003, and Windows Server 2008. The vulnerability could allow elevation of privilege if an attacker logs on to a system and runs a specially crafted application. An attacker must have valid logon credentials and be able to log on locally to exploit this vulnerability.

Maximum Severity Rating - Important
Vulnerability Impact - Elevation of Privilege
Restart Requirement - Requires restart
Affected Software - Microsoft Windows

MS13-034 - Vulnerability in Microsoft Antimalware Client Could Allow Elevation of Privilege (2823482)

This security update resolves a privately reported vulnerability in the Microsoft Antimalware Client. The vulnerability could allow elevation of privilege due to the pathnames used by the Microsoft Antimalware Client. An attacker who successfully exploited this vulnerability could execute arbitrary code and take complete control of an affected system. The attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. An attacker must have valid logon credentials to exploit this vulnerability. The vulnerability could not be exploited by anonymous users.

Maximum Severity Rating - Important
Vulnerability Impact - Elevation of Privilege
Restart Requirement - Requires restart
Affected Software - Microsoft Security Software

MS13-035 - Vulnerability in HTML Sanitization Component Could Allow Elevation of Privilege (2821818)

This security update resolves a privately reported vulnerability in Microsoft Office. The vulnerability could allow elevation of privilege if an attacker sends specially crafted content to a user.

Maximum Severity Rating - Important
Vulnerability Impact - Elevation of Privilege
Restart Requirement - May require restart
Affected Software - Microsoft Office, Microsoft Server Software

MS13-036 - Vulnerabilities in Kernel-Mode Driver Could Allow Elevation Of Privilege (2829996)

This security update resolves three privately reported vulnerabilities and one publicly disclosed vulnerability in Microsoft Windows. The most severe of these vulnerabilities could allow elevation of privilege if an attacker logs on to the system and runs a specially crafted application. An attacker must have valid logon credentials and be able to log on locally to exploit the most severe vulnerabilities.

Maximum Severity Rating - Important
Vulnerability Impact - Elevation of Privilege
Restart Requirement - Requires restart
Affected Software - Microsoft Windows

Go forth an update!

Jeffa

Technorati Tags: Update,Patching,Security