RunAs Radio

What's the latest on Exchange 2016? Richard chats with Microsoft PFE Mike O'Neill about some the things he's seen lately in Exchange world. Mike talks about the hybrid world of mail these days, with on-premises Exchange servers working alongside of Office 365 Exchange Online. The conversation also digs into the affect that feature testing in the cloud has had on the on-premises edition of Exchange - the quality of updates is better and you can have confidence in doing updates during the day with zero downtime - with caveats of course! This may be the last version of Exchange on-premises, but the features will keep coming!

Why would you run Linux on Hyper-V? Richard chats with Microsoft Premier Field Engineer Kevin Kelling about his experiences working with a customer that had tens of thousands of virtual machines running Hyper-V - enough that the licensing of the VMs became an issue! And since Windows Server Data Center edition allows for unlimited Hyper-V instances, the effort was on to make those Linux-based VMs run well in Hyper-V - and with the right tweaking, they do! Great story about digging deeply into how Hyper-V works!

How do you build sustainable PowerShell? By testing it! Richard talks to Adam Bertram about his work with Pester, the testing library for PowerShell. Adam talks about building mature PowerShell scripts, that is, scripts you're willing to share with others. As those scripts become important parts of your application deployment process, they end up in source control and need to be tested before being run. That's where Pester comes in. And Pester does more than just test your scripts, it can test your infrastructure as well!

How do you get identity into the cloud? Richard talks to Joey Snow about his role helping folks with Azure Active Directory. Azure AD is more than just extending your on-premises Active Directory into the cloud, it provides single-sign-on to a variety of SaaS applications, and not just Microsoft ones either! Joey talks about the different techniques available to get and protect identities with the cloud, including multi-factor authentication, Azure Identity Protection and more. There are lots of options to choose from, but there is an identity solution that will work for you - check it out!

DMA vulnerabilities have been around for ten years - are your machines in danger? Richard talks to Sami Laiho about his experiences trying to close the exploit that is Direct Memory Access. This technology for rapid data transfer has been available for years with FireWire and Thunderbolt, and now exists in USB 3.1 as well. The problem is that it has been two-way memory access, so connecting two machines together via FireWire can allow the attacking machine to steal any memory it wants, like your BitLocker encryption key. Only in Windows 10 are we starting to see protection in place, and there's more to come. Scary stuff!

How can automation help you? Richard chats with Jennelle Crothers about her work automating tasks with Azure. So what does automation mean to you? Jennelle talks about automating the delivery of resources to internal developers - whether that be on-premise or in the cloud. This is part of a DevOps practice, being able to use templates so that development is using resources configured as close to production as possible. Automation also applies to testing, deployment, instrumentation, disaster recovery and more. Will IT ever run out of work? Not a chance - there's always more to do!

Can Group Policy help protect your user's machines? Definitely! Richard chats with Jeremy Moskowitz about his on-going work with group policy, including his cool tool, PolicyPak. Jeremy talks about applying least privilege principles via Group Policy, including a case of a patch from June 2016 that may have broken some of your group policies because the machine that has to apply them doesn't have sufficient privileges! Other important least privilege aspects discussed include better management of local admin accounts, control over who actually makes and changes group policy, and how to deal with users who want to install apps. Lots to learn!

What's the Delivery Pipeline and why should you care? Richard chats with Steven Murawaski about his work at Chef, helping organizations get more effective at delivering software. Steven talks about how the latest generation of platform tools such as containers, that while helping to automate the delivery of software, are not a panacea that eliminates all the challenges of said software. You still have to take the time to get your automation right and deeply understand the value of being able to rapid-fire deploy. When you go faster, things get better!

How do you get started in data science? Richard chats with long time data scientist Rafal Lukawiecki about practical data science. Rafal starts out focusing on the most common data science scenarios - understanding your customer and their needs. This goal is more complicated than it appears, often the questions first asked are not the questions you'll actually need answers to. But asking them is important since it leads to information that will influence the next round of questions. The cloud has made it easier than ever to dive into data science, but the principals are still the same: This is a science, after all!

Johan is back, and still doing deployment right! Richard talks to Johan Arwidmark about best practices and clear thinking around deployment. Johsan starts out with the idea that with the speed of updates coming these days, you really need to have a good lab. While it's awesome to test on native client hardware, it's not always possible - but testing in VMs is still a good idea! The conversation also goes to the need for caching of updates with WSUS and Configuration Manager - the network is the constrained resource and updates are only getting larger!