Three quick commands to turn on/off and check BitLocker on Windows 10 Professional and Enterprise. You have to run the following commands in an Administrative terminal. To turn on BitLokcer against volume C: manage-bde -on C: -RecoveryPassword -skiphardwaretest -UsedSpaceOnly To turn off BitLocker against volume C: manage-bde -off C: To check BitLocker against volume C: … Continue reading BitLocker on Windows 10
It took me some time to get this one work, here are a couple of gotchas I learned. If the Fingerprint option is greyed out with a note '*Some settings are hidden or managed by your organization'. The fix is to update the registry key - [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System] "AllowDomainPINLogon"=dword:00000001 If the fingerprint sensor is not responding during … Continue reading Enable Fingerprint login on Windows 10
I am currently working on a Cloud migragion project. The goal is to move the on-premise applications (mostly are Atlassian tools) to AWS. And we need to build everything from scratch. I take it as a good opportunity to refresh what I learned in the past a few years, and also implement the best practices … Continue reading SAML-Based Federation for AWS Access
Starting April 28, 2018, AWS will start to support Certificate Transparency. I am new to this, here are somethings that I learned so far. What exactly is certificate transparency? Certificate Transparency framework is a project that is initially launched by Google. What problems does certificate transparency solve? It is designed to solved some flaws in the … Continue reading Certificate Transparency
As mentioned in my previous blog New to AWS GuardDuty? I have been working on open sourcing the tool that I wrote for internal use. Now it is public available on my GitHub: AWS GuardDuty Manager Description AWS GuardDuty Manager (GDM) is a tool that allows you to perform some common GuardDuty tasks (start, stop and … Continue reading AWS GuardDuty Manager
If you are new to AWS GuardDuty, FAQ is the best place to start from. I am currently working on a GuardDuty relevant project, and here are some bullets that I quickly summarised. Hope it is useful to you. GuardDuty is AWS managed continuous thread detection service. It detects the threads by analysing the VPC Flow … Continue reading New to AWS GuardDuty?
Do you know how many Amazon issued certificates (ACM) or user uploaded certificates (IAM) in your AWS accounts? How many certificates have been deployed to production in your Akamai contracts? Not sure about you, but I don't know the answer. So I wrote a tool called CertStuff to get all those information (common name, SAN, … Continue reading CertStuff