Outlook and Teams not launching, Error code 80090016. Your computer’s Trusted Platform Module has malfunctioned.

When you launch Outlook and Teams on Windows 10 workstation, you may receive the below error: Microsoft Office Version being used Microsoft 365 MSO 16.0.13127.21062 (Microsoft 365 Apps for enterprise) Screenshot: Solution: Logoff current user. Login on the workstation using administrator account. Go to C:\users\<user account having issue>\AppData\Local\Packages\Microsoft.AAD.BrokerPlugin_cw5n1h2txyewy Rename Microsoft.AAD.BrokerPlugin_cw5n1h2txyewy to Microsoft.AAD.BrokerPlugin_cw5n1h2txyewy.old Log off from the administrator account and Login as the user. Launch Outlook and Teams, it should work fine this time. OneDrive may have been signed out as well, you …

Read moreOutlook and Teams not launching, Error code 80090016. Your computer’s Trusted Platform Module has malfunctioned.

How to configure Azure Site Recovery, perform test failover and invoke disaster recovery failover – Part 3

In the previous post How to configure Azure Site Recovery, perform test failover and invoke disaster recovery failover – Part 2 – TechPress we have seen how to perform Test Failover using Azure Site Recovery. Also, we have seen how to clean up the test failover after verification of the application services on the server. We had noted down the RPO (Recovery Point Objective) and know how much time it takes to bring up the Server during DR (RTO). If you are …

Read moreHow to configure Azure Site Recovery, perform test failover and invoke disaster recovery failover – Part 3

How to configure Azure Site Recovery, perform test failover and invoke disaster recovery failover – Part 2

In the last post How to configure Azure Site Recovery, perform test failover and invoke disaster recovery failover – Part 1 – TechPress i had explained on how you can configure Azure Site Recovery and configured the Virtual network for Test Failover and Failover. When you initiate Test Failover, Site Recovery Service will use that network to start the protected servers in DR site. If you have never performed a test failover or the last test failover was failed. A warning message …

Read moreHow to configure Azure Site Recovery, perform test failover and invoke disaster recovery failover – Part 2

How to configure Azure Site Recovery, perform test failover and invoke disaster recovery failover – Part 1

Site Recovery service is a BCDR (Business continuity and disaster recovery) solution which keeps your azure workload running during outages. You can configure this service to replicate the workloads to secondary site. Secondary site could be referred to as DR site as well. Its a region other than your primary site. For Example, if your Azure Workload is in Azure UK South Region, you can configure UK West to be your secondary region / DR Site. You can also replicate your on-premise …

Read moreHow to configure Azure Site Recovery, perform test failover and invoke disaster recovery failover – Part 1

Step by Step Implementation of Azure AD Application Proxy

Azure Active Directory’s Application Proxy service provides secure remote access to on-premises web applications. After a single sign-on to Azure AD, users can access both cloud and on-premises applications through an external URL or an internal application portal. For example, Application Proxy can provide remote access and single sign-on to Remote Desktop, SharePoint, Teams, Tableau, Qlik, and line of business (LOB) applications. Implementation of Azure Application Proxy is easy and provides secure access to your on-premise web applications without the need to …

Read moreStep by Step Implementation of Azure AD Application Proxy

Exchange Online / Exchange 2010 useful PowerShell Commands

Export the Access Rights / Permissions assigned to All user mailboxes in Office365. Export the Access Rights / Permissions assigned to All Shared Mailboxes in Office365 Export the Access Rights / Permissions assigned to All Shared Mailboxes in Office365 (Another Variation to Export only relevant information) List the Access Rights / Permissions for a user on all other mailboxes (Below command will list the full mailbox permissions which user1 have on all other mailboxes) Export the Access Rights / Permissions for the Calendar …

Read moreExchange Online / Exchange 2010 useful PowerShell Commands

How to create Azure Policy to enforce resource tags

As we discussed management of azure resource tags using GUI and PowerShell in this post , we have updated the resource tags on existing resources. However, its a best practice to update the resource tags at the time of resource creation. You can create policies in azure and apply it to the root management group which contains the subscription. Azure Policy enforces organization standards by evaluating resources and comparing to the policy definitions. Please find below screenshots which shows step by step …

Read moreHow to create Azure Policy to enforce resource tags

How to apply Tags on all Azure resources using PowerShell

You can use the tags to logically organize all the resources in Azure. Tag in azure is a name and value pair which can be applied using GUI or by using PowerShell. You can take the approach of GUI if there are not too many resources where you have to manage the tags. In that case, you can click on each resource and then click Tags (as shown in below screenshot) on the left hand side pane and fill the details for …

Read moreHow to apply Tags on all Azure resources using PowerShell

Volume shadow copy service

Volume Shadow Copy Troubleshooting, Delete existing shadow copies on windows server using command line , vssadmin command examples, use of diskshadow command

Vssadmin command A quite useful built-in command which you can use as a starting point while troubleshooting the Shadow Copies is Vssadmin. Lets run this command with different parameters and check the results. There are different switches / commands which can be used with vssadmin. To show / list the different commands, Open Powershell as Administrator or Command prompt as an Administrator and type vssadmin Command Description Availability Vssadmin add shadowstorage Adds a volume shadow copy storage association. Server only Vssadmin create shadow …

Read moreVolume Shadow Copy Troubleshooting, Delete existing shadow copies on windows server using command line , vssadmin command examples, use of diskshadow command

Create Group Policy to Lock User’s Workstation after 20 minutes of inactivity (Windows 10)

Its a best practice to lock the workstation whenever you are stepping away from the desk, whether its for few minutes or few hours. But, we know that this practice is not 100% followed leaving the workstation not secured / exposed for information leak. Therefore, you can create a Group Policy to automatically lock users workstation after X minutes of inactivity. X can be any value between 1 second to maximum of 86,400 Seconds (24 hours). Lets see how it can be …

Read moreCreate Group Policy to Lock User’s Workstation after 20 minutes of inactivity (Windows 10)

When Sending an email from another mailbox /shared mailbox (where user has sendAs permission), emails are being saved in Sent Items folder of main mailbox but not in the shared / another user’s mailbox sent items folder

Recently i have been reported an issue where one of the user with SendAs permission to a shared mailbox tried to send an email From shared mailbox, the email’s sent are being stored in Sent Items folder of main user mailbox instead of sent items folder of shared mailbox. Create a DWORD Entry DelegateSentItemsStyle and set the value to 1 in the registry under below Path. Registry Path: HKEY_CURRENT_USER\Software\Microsoft\Office\x.0\Outlook\Preferences (The x.0 placeholder represents your version of Office (16.0 = Office 2016, 15.0 = Office …

Read moreWhen Sending an email from another mailbox /shared mailbox (where user has sendAs permission), emails are being saved in Sent Items folder of main mailbox but not in the shared / another user’s mailbox sent items folder

How to set the password to never expire for all the users on office365

There could be a requirement when you want to set the users password to never expire on office365. The setting for In-cloud accounts is controlled using Set-msoluser command. Please make sure before you set the password for the users to never expire, all users are enabled for Two Factor Authentication (2FA). You can create a conditional access (CA) policy which requires 2FA when anyone access the Cloud resources which will protect the user accounts. First you should check PasswordNeverExpires attribute for the …

Read moreHow to set the password to never expire for all the users on office365

How to configure automatic Outlook Contacts Sync to Native Contacts App for iOS and Android devices using Microsoft Intune / Microsoft Endpoint Manager (MEM)

When you have a requirement where users are using their personal mobile devices to access the corporate emails and other Microsoft office apps. You want to make sure the data in these apps is secure and also prevent data leak. Application Protection Policies (APP) Policies can be applied to the users which protects your apps and data. App Protection Policies provides the option to Allow the contacts to be synced with the native apps. The setting is called “Sync policy managed app …

Read moreHow to configure automatic Outlook Contacts Sync to Native Contacts App for iOS and Android devices using Microsoft Intune / Microsoft Endpoint Manager (MEM)