Securing corporate networks 2019 Best Practices – Admin Accounts

In the age of constant attacks on your networks here are some good tips on how you can reduce the risk of having a security breach.

Administrator Accounts

Employees with administrative access should be using separate devices dedicated only for administrative operations. These devices like all the other devices within your domains should always be kept up to date with all the recent software and operating system updates.

All default administration accounts should be given zero rights on the device account and the domain account. Its best practices to require that they request just-in-time (JIT) privileges that gives them access for a finite amount of time and logs it in a system.

Secure Admin Accounts

Administrator accounts should also be created on a separate user namespace/forest that cannot access the internet, and should be different from the employee’s normal work identity. This way, any compromise of the company’s employee-force namespace/forest won’t grant the attackers easy access to an administrator account, since the employee with admin rights would not be using that account for daily tasks.

Employees with administrative accounts should avoid remotely logging into devices with administrator access to perform any administrative tasks, as attackers could be logging these events on compromised devices. The way to go is to have administrators use their separate devices for any administrative tasks as much as possible.

Contact us today toll free 1-888-392-9623 to find out more on how Adept Technologies can save you money by utilizing our services and technology.


Server 2008 R2 end of life

The end of the road is rapidly approaching. The Windows Server 2008 R2 end of life is January 14, 2020 and SQL Server 2008 R2 is July 9, 2019. That means the end of regular security updates.

For organizations that want to stay on premise and migrate to a newer Windows Server OS and SQL database system, the time is now. If the decision is to move to Windows Server 2016 or Windows Server 2019, we recommend Windows Server 2019, with SQL Server 2016 or newer.

Server 2008 R2 end of life

The on premise Adept Enterprise systems must be upgraded to support the new versions of Windows Server OS and SQL database systems. We have already provided these updates to our customers. The time is now to upgrade.

The real threat of ransomware and damage to corporate brands is a major risk to not upgrade to supported systems. The 2017 WannaCry outbreak is an example of attacks that used vulnerabilities in outdated Windows systems.

The Software as a Service Adept Enterprise systems are already updated.

If your organization is still running Windows Server 2008 R2 and SQL Server 2008 R2 you have been warned. There is no excuse to run unsupported software systems. The risk is just to great.

Contact us today toll free 1-888-392-9623 to find out more on how Adept Technologies can save you money by utilizing our technology.

Energy Department Announces $10 Million for Marine Energy Research and Testing Program

The Water Power Technologies Office has issued a Funding Opportunity Announcement to select a network director for a new program to support testing and research for marine energy technologies—the U.S. Testing Expertise and Access for Marine Energy Research (TEAMER) Program. TEAMER will bring together capabilities from universities and the national laboratory system to provide marine energy developers ready-access to unique, world-class testing facilities and expertise. Through its network of facilities and testing protocols, the program will simplify access and reduce costs of testing for MHK technology developers – ensuring access to the appropriate facilities at the appropriate time. Reducing costs, accelerating technology development, and decreasing testing and development timelines of marine energy technologies can help realize the nation’s potential for future growth in marine energy resource extraction. The Water Power Technologies Office is committed to investing in early-stage R&D that enables the domestic marine energy industry to advance toward becoming more cost competitive while also helping to promote economic prosperity and energy security. Read more

Windows 10 Version 1809, Remote Desktop Bug Workaround

If you are running Windows 10 version 1809 Remote Desktop Connection from another Windows 10 version 1809, odds are the experience is slow, stalls, or just fails. This is a known Remote Desktop bug. Rumor has it Microsoft will have a fix out this April.

A workaround is to add an entry in the windows registry.
Add a new registry entry in:

“HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Terminal Server Client”
UseURCP
REG_DWORD 0

Windows 10 Version 1809 RDP Temp Fix

Windows 10 has had a lot of issues over the years. Reminds me of the Windows 95 days, on all the registry tweaks. I will post a response here when a real fix is released. This workaround worked great for us on Windows 10 to Windows 10 Remote desktop connections via VPN. Windows 10 to Windows 7 Remote Desktop Connections via VPN did not have any issues, and thus did not need this workaround.

Hopefully this will help others from pulling their hair out. Keep it real out there, and have a great day.

Contact us today toll free 1-888-392-9623 to find out more on how Adept Technologies can save you money by utilizing our technology.

Samsung 970 PRO SSD NVMe

Samsung’s 970 PRO has always been the fastest of the NVMe SSDs. I have been very impressed with its performance and reliability. It appears the SATA days with regard to workstations have finally come to an end. I installed the 1 TB 970 PRO in an Aorus Ultra Z390 Board with 64 GIG of ram and the new Intel Core i9-9900k .

The Samsung SSD 970 PRO is the 3rd generation of Samsung’s Client-PC NVMe SSD. The Samsung 970 PRO is specially designed for tech enthusiasts, hardcore gamers and professionals whose workloads are intensive on PCs and workstations. Featuring the latest Samsung 2bit MLC V-NAND technology and a newly enhanced Phoenix controller, the 970 PRO delivers fearless performance and unprecedented reliability in a small M.2 2280 form factor and offer customers the most advanced Samsung SSD technology currently available for Client PCs.

Samsung 970 Pro

Delivering unprecedented performance, the 970 PRO maximizes the potential of NVMe bandwidth. With much greater performance than the previous generation, the new 970 PRO offers unparalleled sequential read/write speeds of up to 3,500/2,700 MB/s respectively and random performance of up to 500,000 IOPS for both of read/write operations. The 970 PRO is the best solution for processing massive amounts of data, 4K graphic work, 4K/DirectX 12 games and data analytics.

Finally we have some serious hardware that is leaping forward. The advanced Data Encryption is a major plus.

The 970 PRO provides multiple advanced data encryption features. Self-Encrypting Drive (SED) security technology will help keep data safe at all times. The 970 PRO includes an AES 256-bit hardware-based encryption engine to ensure that your personal files remain secure. Being hardware-based, the encryption engine secures your data without the performance degradation that you may experience with software-based encryption. Also, the 970 PRO is compliant with various advanced security management solutions (TCG Opal and Encrypted Drive-IEEE1667).

Read more at the Samsung’s website: https://www.samsung.com/semiconductor/minisite/ssd/product/consumer/970pro/

The Adept Enterprise advanced software systems are designed for the new Samsung 970 PRO SSD. Performance, reliability, security and scalability are all major demands for enterprise software systems and the hardware required to run them in the 21st century. The Samsung 970 PRO SSD surpasses this demand. Good Job!

Contact us today toll free 1-888-392-9623 to find out more on how Adept Technologies can save you money by utilizing our technology.