Category: Microsoft
Category Archives: Microsoft
Intune update rings – Use Deadline settings
Can anyone help with recommended settings for updates rings in Intune, specifically the user deadline settings?
I can currently have Quality updates deferred for 7 days.
I want to enforce a deadline and grace period for this update ring but a little confused by the settings, I don’t think the explanations are the best when you hover the “i” for more information.
Can anyone suggest the best settings?
I currently have 7 days for the deadline and 2 days for a grace period.
Do you think we should be setting auto reboot before deadline to yes?
Any advise would be great.
Can anyone help with recommended settings for updates rings in Intune, specifically the user deadline settings?I can currently have Quality updates deferred for 7 days. I want to enforce a deadline and grace period for this update ring but a little confused by the settings, I don’t think the explanations are the best when you hover the “i” for more information. Can anyone suggest the best settings?I currently have 7 days for the deadline and 2 days for a grace period. Do you think we should be setting auto reboot before deadline to yes? Any advise would be great. Read More
Setting Up WSL for Secure Redis CLI Connections to Azure Redis Cache on Windows.
Introduction
This blog post is a comprehensive guide to setting up the Windows Subsystem for Linux (WSL) on your Windows machine. This enables you to use the Redis Command-Line Interface (CLI) to connect to an Azure Redis Cache instance securely. By running a Linux environment on Windows, you can use Redis CLI without the need for a separate virtual machine or dual booting.
Methods to Connect to Redis As of the date of this blog post, there are several ways to connect to Redis:
Redis Insight: A graphical interface offering insights and connectivity troubleshooting for Redis data.
Redis CLI: A command-line tool for direct interaction with Redis.
Client Libraries: Connection via libraries available for various programming languages.
Redis Insight
For those interested in a GUI-based approach, our blog post on using Redis Insight for Azure Cache for Redis provides in-depth information. Redis Insight is the best option for those who prefer a GUI with high-level connectivity troubleshooting and insights into our data present in the cache.
Redis CLI
Redis CLI (Command-Line Interface), on the other hand, is ideal for those who prefer command-line familiarity, ability to use scripting and automation capabilities in a lightweight and portable environment or have restrictions on installing third-party software.
In addition, Redis CLI is a powerful tool for interacting with Azure Cache for Redis as a client. It allows you to directly communicate with your Redis instance, making it useful for debugging, troubleshooting, and managing your cache.
Redis CLI and Secure Connections Historically
In the past, Redis CLI was limited to non-TLS ports, which posed a security concern for Azure Redis Cache connectivity. Secure connections required workarounds like disabling SSL-only configurations, connect through the Azure Console, or employ utilities like Stunnel for SSL connections, and while the default remains a plain TCP connection, the introduction of SSL/TLS connections has now made it possible to secure your Redis CLI connection without compromising security.
Installing WSL on Windows To use Redis CLI on Windows
The Redis-CLI runs natively on Linux, making its installation/usage process very straightforward. For Windows environments, we must install the Windows Subsystem for Linux (WSL) to be able to run Linux tools directly on Windows.
In this blog post, we’ll install WSL using the default Ubuntu distribution of Linux. However, you can change this default by adding “–distribution” to the WSL command and specifying the desired Linux distribution (a list of available distributions can be obtained with “wsl –list –online”).
We’ll use WSL version 2, which is the default at the time of this post. However, specific scenarios or exceptions may warrant switching to WSL 1. Microsoft documentation provides a table to help you decide which version is better suited to your needs:
Comparing WSL Versions | Microsoft Learn
Step #1: Install WSL in Windows.
For Windows 10 (version 2004 and higher) / Windows 11:
WSL can be installed with a single command through PowerShell or the Windows CMD in administrator model: “wsl –install”.
Optional parameters for distribution change and online installation are available.
To install WSL 1 instead of WSL 2, use: “wsl –install –enable-wsl1”.
Link: Basic commands for WSL | Microsoft Learn
For Windows Server 2022,
WSL installation is supported using the same command: “wsl –install”.
Execute the command in an administrator PowerShell or Command Prompt.
Restart your machine after installation.
For Windows Server 2019 (version 1709+):
WSL needs to be manually enabled.
Use PowerShell to enable WSL:
“Enable-WindowsOptionalFeature -Online -FeatureName Microsoft-Windows-Subsystem-Linux”
Step #2: Choose a Linux Distribution
After enabling WSL and rebooting the computer, you must choose a Linux distribution to install, you can see a list of available distributions here.
Now that the Linux distribution has been downloaded, extract and install the selected Linux distribution using the following PowerShell commands:
extract the <DistributionName>.appx package’s contents
“Rename-Item .Ubuntu.appx .Ubuntu.zip”
“Expand-Archive .Ubuntu.zip .Ubuntu”
–Navigate to the folder containing the download and run the following command in that directory, where app-name is the name of the Linux distribution .appx file.–
“Add-AppxPackage .app_name.appx”
Note: If you encounter an error code 0x8007007e, your system does not support WSL. Please refer to the Microsoft documentation for comparing WSL versions to decide if WSL 1 or WSL 2 is better suited for your needs.
Step #3: Add the Linux Distribution to Windows Environment PATH
Add the Linux distribution to your Windows environment PATH using the following steps:
Open PowerShell or Command Prompt as an administrator.
Execute the following commands to add the Linux distribution to the PATH:
$userenv = [System.Environment]::GetEnvironmentVariable(“Path”, “User”)
[System.Environment]::SetEnvironmentVariable(“PATH”, $userenv + “;C:UsersAdministratorUbuntu”, “User”)
Previous Windows Versions
For older versions of Windows:
Manual installation steps are available for older versions of WSL on Microsoft Learn.
Previous Windows Server Versions
WSL is not supported on older versions of Windows Server.
Note: During any of the WSL installations, you will be prompted to enter a username and a password at the end of this. Make sure to keep them somewhere you remember.
Using Redis CLI
After installing WSL and a Linux distribution, update and install Redis with the following commands from your Linux VM:
“sudo apt-get update”
Afterwards, run:
“sudo apt-get install redis”
Check the Redis status within your Linux distribution, Ubuntu:
You can validate the Redis CLI Version installed with “redis-cli –version”
Note: If you run into any issues, try restarting the service by running “sudo systemctl restart redis.service”
Retrieve your Azure Cache for Redis access keys from the Azure Portal’s settings/authentication section.
Remember to keep these keys confidential.
Gather the access information to your Azure Cache for Redis from the Azure Portal by navigating to the settings/Authentication blade, please note that the access keys to your Azure Cache are extremely sensitive information that should never be shared, and example is only shown due to the test cache already being deleted by the time this blog is published.
For this example, I will connect using TLS by running the following command including the –tls parameter:
“redis-cli.exe -p 6380 -h yourcachename.redis.cache.windows.net -a YourAccessKey –tls”
Note: For alternatives on how gather your cache information, please refer to the following documentation: Use redis-cli with Azure Cache for Redis – Azure Cache for Redis | Microsoft Learn
Verify the connection with the PING command:
The PONG reply will let you know you have successfully connected to your Azure Cache for Redis instance using the redis-cli.
With an established connection, you can now insert keys, run commands in a loop, perform mass data insertion and more. Please reference to the Redis documentation for a full rundown of the capabilities of the Redis CLI console.
Conclusion
This blog post has outlined the steps necessary to set up WSL and securely connect to Azure Redis Cache using Redis CLI. For further details and troubleshooting, please refer to the official Microsoft documentation on using redis-cli with Azure Cache for Redis. You can find the current information at the Azure Cache for Redis development FAQ.
Microsoft Tech Community – Latest Blogs –Read More
Microsoft App Assure supports Copilot for Microsoft 365 customers moving to monthly updates
At Microsoft, our mission to empower every person and every organization to achieve more is continually propelled by innovation. A prime example of that innovation is Copilot for Microsoft 365. Today I’m thrilled to share an important update that will help even more organizations take advantage of this groundbreaking AI tool.
Copilot iterates fast and relies on the latest updates and integration throughout the Microsoft product suite, so devices need to be on a monthly update channel for Microsoft 365 Apps (Current Channel or Monthly Enterprise Channel). We recommend Monthly Enterprise Channel for predictable updates, reliability, and enterprise management. Every day we see more commercial customers moving to a monthly update channel to maximize the benefits of Copilot. The vast majority—over 75 percent—are currently running on the Monthly Update Channel or Current Channel. To support the transition, I’m excited to announce that we’re expanding App Assure’s app compatibility promise to include a specific commitment to Copilot customers adopting monthly updates:
App Assure’s promise expands to support Copilot customers moving to monthly updates!
Microsoft is committed to ensuring your apps work when moving to Monthly Enterprise Channel to take advantage of Copilot for Microsoft 365. If you encounter any issues, we will help you remediate them at no additional cost.
How App Assure delivers with our latest promise
App Assure has long guaranteed your apps will work with the latest versions of Microsoft software. Now, App Assure engineers will work with you to ensure a seamless transition to a monthly update channel for Copilot. They’ll also address any app compatibility issues that may arise. For instance, they can:
Help you troubleshoot and identify a root cause.
Provide guidance to help you remediate an application compatibility issue.
Engage with third-party independent solution vendors (ISVs) on your behalf to remediate some part of their app, so that it’s functional on the most modern version of our products.
Work with Microsoft product engineering teams as needed.
Confidently move to monthly update channels for Copilot
To further support customers moving to monthly update channels, we’re also investing in tools such as Update Under Lock, Cloud Update, and Update Validation to minimize user disruption and enhance manageability. In addition, the Microsoft 365 Apps admin center provides customers with reliability and performance metrics as well as guidance to help optimize and troubleshoot Microsoft 365 Apps on client devices.
Empower your organization with Copilot for Microsoft 365
The combination of Copilot and a monthly update channel offer substantial benefits. Copilot empowers companies to work more productively, boost efficiency, and improve business outcomes. Monthly update channels bring the latest Microsoft 365 features on custom rollout waves, offer a secure experience that minimizes incidents and disruptions, and provide better diagnostics for supportability and minimizing helpdesk claims.
To explore how your organization can maximize the value of Copilot for Microsoft 365 or to learn more, connect with App Assure by visiting aka.ms/AppAssureRequest or sending an email to achelp@microsoft.com. For more information on other areas of App Assure’s service areas, visit App Assure with Microsoft FastTrack or see our service description.
Microsoft Tech Community – Latest Blogs –Read More
Preparing your organization for AI: Insights from Microsoft’s roll-out of Copilot in Viva Glint
On May 16, the Viva People Science team held the third webinar in its AI Empowerment series. During this webinar, I was joined by Carolyn Kalafut (Principal People Scientist at Microsoft Viva), and Ketaki Sodhi (Senior Analyst and Program Lead, Employee Listening at Microsoft).
Our discussion centered around preparing organizations for the integration of AI tools, using Copilot in Viva Glint as a practical example. The webinar provided a rich tapestry of perspectives, from the scientific underpinnings to our own internal experiences at Microsoft.
The presenters highlighted several broad takeaways for the audience:
AI is not coming; it’s here reshaping our work and demanding thoughtful organizational strategies for integration.
The adoption of AI tools like Copilot is being driven by employees’ enthusiasm, underscoring the need for organizations to match this pace.
The value of AI extends beyond productivity gains; it’s about seamless integration into workflows, democratized access, and enhanced decision making capabilities.
Ketaki and Carolyn also shared key learnings from the roll-out of Copilot in Viva Glint for Microsoft leaders, elaborating on the thought process behind this initiative, the decision making, and the approach to change management. Here are three key insights from this discussion:
Consider taking an iterative approach to deployment, before ramping up to full utilization: With Copilot in Viva Glint, you can provide access to this functionality to your Glint admin in the first instance, and take learnings from the experience before ramping up to give access to a small population of managers, and then all managers in the organization. Things to consider when deciding which type of deployment is best for your organization include current manager usage and habits around Glint data and AI, the number of comments managers receive (the key value of Copilot in Viva Glint is to save time on reading through a large number of comments), survey timing and adjacent organizational changes that might be underway for managers.
Identify use cases that will be an easy lift, low risk, but high reward. With the example of rolling out Copilot in Viva Glint for all people managers at Microsoft, there was underlying infrastructure that had already been built in terms of the data structures, the data permissions, security, and managers already using the Viva Glint platform. These were components that could be carried over to the roll-out.
Developments in Gen AI will be continuous, so we also need to think differently in terms of our change management and roll-out. Ketaki mentioned, “With the roll-out for Copilot in Viva Glint at Microsoft, we needed to build the muscle to experiment and learn to actually get the value from these tools. So our approach has been fast cycles of building, testing, piloting, and roll out – with the expectation that capabilities will continue getting added, as opposed to waiting for the final buttoned up product.”
As we continue to navigate the AI landscape, it’s crucial to foster a culture of experimentation and learning. AI’s potential is vast, and its successful integration hinges on our collective curiosity and willingness to evolve.
We invite you to watch the recordings from our previous events in this series below. Discover more, engage with the content, and let’s embark on this journey together.
AI Empowerment: Introducing our Viva People-Science series for HR
Microsoft Tech Community – Latest Blogs –Read More
Open all (x) …
If I use “Open all (x) …”, it opens x times the same URL(random item of folder) not the x URL’s of the favorites folder.
Maybe it works but not in my case! Please confirm me.
If I use “Open all (x) …”, it opens x times the same URL(random item of folder) not the x URL’s of the favorites folder.Maybe it works but not in my case! Please confirm me. Read More
Need to get the left-click menu back from Windows 10.
I use left-click functions a LOT, especially left-click:Print or rename. Now they’ve forced in yet another click to get to those, unnecessarily, on Windows 11.
So far all I’ve seen is changes to registries, which I cannot do because this is a company PC and such mods aren’t allowed.
I also very much dislike the symbols being placed on there instead of words like “copy, paste” because to be honest, it gets confusing after a while which means which, it’s not intuitive to me.
While I realize it’s cliche’ to say that some changes are just backwards, this left click menu was definitely a backwards move. It’s not an improvement at all, it’s an unnecessary complication. Is there ANY way to get the Win 10 left click menu back?
I use left-click functions a LOT, especially left-click:Print or rename. Now they’ve forced in yet another click to get to those, unnecessarily, on Windows 11. So far all I’ve seen is changes to registries, which I cannot do because this is a company PC and such mods aren’t allowed. I also very much dislike the symbols being placed on there instead of words like “copy, paste” because to be honest, it gets confusing after a while which means which, it’s not intuitive to me. While I realize it’s cliche’ to say that some changes are just backwards, this left click menu was definitely a backwards move. It’s not an improvement at all, it’s an unnecessary complication. Is there ANY way to get the Win 10 left click menu back? Read More
Exchange on premise
I would like to know the best possible solution to block outlook connections (i.e. autodiscover, mail transport….) to only use specific mailbox servers. Here’s my scenario. My root domain is called Philly, where I have three exchange servers ex1, ex2, and ex3 installed. Each of the exchange servers are configured with hub/cas/mbx roles. I also have 3 Tree domains named sales.com, HR.com, and marketing.com. I would like to have users from each tree domain connect to the respective exchange server where their mailbox is created when utilizing outlook. Example, mailbox users from sales.com domain will only use ex1, HR.com will use ex2, and marketing will use ex3. I have configured mail flow policies to prevent mail from being sent to other tree domains. Users from each domain will only be allowed to send to users within it’s domain. I have also created Address book policy routing agents so users will only be able to see users within their respective domains address book. They will not be able to see the GAL. All of the above is working fine, but I’m running into a problem with Outlook connecting to any of the Exchange servers. How do I restrict Outlook to only connecting to a specific mail server? Is there an exchange powershell command that would restrict connections ? Thanks any help is appreciated.
I would like to know the best possible solution to block outlook connections (i.e. autodiscover, mail transport….) to only use specific mailbox servers. Here’s my scenario. My root domain is called Philly, where I have three exchange servers ex1, ex2, and ex3 installed. Each of the exchange servers are configured with hub/cas/mbx roles. I also have 3 Tree domains named sales.com, HR.com, and marketing.com. I would like to have users from each tree domain connect to the respective exchange server where their mailbox is created when utilizing outlook. Example, mailbox users from sales.com domain will only use ex1, HR.com will use ex2, and marketing will use ex3. I have configured mail flow policies to prevent mail from being sent to other tree domains. Users from each domain will only be allowed to send to users within it’s domain. I have also created Address book policy routing agents so users will only be able to see users within their respective domains address book. They will not be able to see the GAL. All of the above is working fine, but I’m running into a problem with Outlook connecting to any of the Exchange servers. How do I restrict Outlook to only connecting to a specific mail server? Is there an exchange powershell command that would restrict connections ? Thanks any help is appreciated. Read More
How to bulk convert pdf to jpg on Windows 11 for free?
Hi everyone,
I have hundreds of PDF product user manual and I’m trying to bulk convert PDF files to JPG images on my Windows 11 machine, but I’m having trouble finding the right software or tool to do so. I’ve searched online and found a few options, but none of them seem to work properly.
Can anyone recommend a reliable and easy-to-use PDF to JPG converter that works on Windows 11? I’d appreciate any suggestions or advice on how to get this done.
Thanks in advance!
Hi everyone, I have hundreds of PDF product user manual and I’m trying to bulk convert PDF files to JPG images on my Windows 11 machine, but I’m having trouble finding the right software or tool to do so. I’ve searched online and found a few options, but none of them seem to work properly. Can anyone recommend a reliable and easy-to-use PDF to JPG converter that works on Windows 11? I’d appreciate any suggestions or advice on how to get this done. Thanks in advance! Read More
Privacy on MS Defender iOS with ControlFilter
I am eager to understand more about how the Zero Touch Control Filter method of deploying Defender for iOS to Intune supervised devices affects end user privacy. I note that it does not use the loopback VPN referenced in unsupervised device setups but also that the Control Filter cannot be used alongside a device-wide VPN – does this mean the traffic is being routed elsewhere, I.e the company network? As far as I can see Microsoft have not directly commented on the privacy implications of this kind of setup.
I am eager to understand more about how the Zero Touch Control Filter method of deploying Defender for iOS to Intune supervised devices affects end user privacy. I note that it does not use the loopback VPN referenced in unsupervised device setups but also that the Control Filter cannot be used alongside a device-wide VPN – does this mean the traffic is being routed elsewhere, I.e the company network? As far as I can see Microsoft have not directly commented on the privacy implications of this kind of setup. Read More
Authentification Slio and IPSEC RDP
I would like to use authentication silos with IPsec RDP for my PAW T0 machines towards T0 resources, but it is not working—either the silos or the IPsec RDP. I wanted to get your opinion if you have encountered the same issue. Additionally, I have another question regarding the configuration of the silos: when I set the KDC part to “supported,” it does not work; it only works when set to “always provide claims.”
I would like to use authentication silos with IPsec RDP for my PAW T0 machines towards T0 resources, but it is not working—either the silos or the IPsec RDP. I wanted to get your opinion if you have encountered the same issue. Additionally, I have another question regarding the configuration of the silos: when I set the KDC part to “supported,” it does not work; it only works when set to “always provide claims.” Read More
Hyper-V Error, “Cannot Connect to the Virtual Machine”
I’m on Windows 11 Pro (Client) version 23H2 host and have tried creating multiple different guest OS machines all with the same error, “Cannot Connect to the Virtual Machine.” However, when I power on the machine, I can see an image of it booted up in the Hyper-V Manager window. I just can’t connect to it. Both the host and the guest machine are running on the same pc. Any idea how to troubleshoot this? This is my first time using Hyper_V to manage virtual machines so it’s possible I’m overlooking something. Here is a screenshot of the error in Hyper-V Manager
I tried creating both internal and external switches in the Virtual Switch Manager. I made sure virtualization is enabled in the BIOS and that Windows is up to date. I’ve tried starting and stopping the service and restarting my pc.
I’m on Windows 11 Pro (Client) version 23H2 host and have tried creating multiple different guest OS machines all with the same error, “Cannot Connect to the Virtual Machine.” However, when I power on the machine, I can see an image of it booted up in the Hyper-V Manager window. I just can’t connect to it. Both the host and the guest machine are running on the same pc. Any idea how to troubleshoot this? This is my first time using Hyper_V to manage virtual machines so it’s possible I’m overlooking something. Here is a screenshot of the error in Hyper-V ManagerI tried creating both internal and external switches in the Virtual Switch Manager. I made sure virtualization is enabled in the BIOS and that Windows is up to date. I’ve tried starting and stopping the service and restarting my pc. Read More
MS To Do App not working anymore on MacOs with M365 Business Standard
I can no longer log in to To Do. The app states out, that my account is not working with To Do. The the message is (in german) “Your account is not on Exchange Online, therefore it is not supported for Microsoft to Do”. However, the web version and the app for iOS work without any problems! We use MS 365 Business Standard company-wide.
As you can see from the app reviews, we are probably not alone with this problem…
Whats the problem and how to fix it?
I can no longer log in to To Do. The app states out, that my account is not working with To Do. The the message is (in german) “Your account is not on Exchange Online, therefore it is not supported for Microsoft to Do”. However, the web version and the app for iOS work without any problems! We use MS 365 Business Standard company-wide. As you can see from the app reviews, we are probably not alone with this problem… Whats the problem and how to fix it? Read More
GDAP renewal time is approaching
Hi all, The relationships we created two years ago are due for renewal soon, and I’m curious how other people are approaching the creation of new relationships. With the introduction of relationships that auto renew, have you found this to be a beneficial alternative? We are a Managed Service Provider and our customers want us to turn ALL the knobs in the Microsoft portals for them. I want to have the flexibility of techs only enabling the roles they need, but there are a LOT of roles. Creating a relationship with 34 roles is a bit extreme. Plus, it looks like we need 43 built-in roles to have the same level as access as Global Admin, and some of those roles are not available via GDAP today. The role that stands out the most is “Organizational Branding Administrator.” Can another role that is available through GDAP change sign-in branding? What would partners think if Microsoft allowed the Global Admin role to auto-renew until Microsoft adds all the built in roles to GDAP roles needed to replace Global Admin? Maybe put some sort of extra warning on the role acceptance side advising the client this is not recommended and let the client make that informed choice themselves? What do you think customers opinion of this move would be? From my conversations with different people, I am under the impression that customers didn’t want Microsoft to allow partners the option of letting the Global Admin role auto-renew. I am curious what the customers were looking to address with this approach and if there is another way. I look forward to reading your thoughts and experiences! Read More
Can I have a customised message when survey expires?
Can I have a customised message when survey expires instead of this Forms – is currently not accepting response.
Can I have a customised message when survey expires instead of this Forms – is currently not accepting response. Read More
VBScript deprecation: Timelines and next steps
Scripting options for web development and task automation are modernizing. To provide you with the most modern and efficient options, we are replacing VBScript with more advanced alternatives such as JavaScript and PowerShell. Find out what VBScript deprecation means for you and how you can get ready.
What is VBScript?
Visual Basic Scripting Edition, commonly referred to as VBScript, is a lightweight scripting language first introduced by Microsoft in 1996. The language has been available as a system component in Windows OS and has been widely used for automating tasks and controlling applications on Windows-based systems. It’s often embedded within HTML pages to add dynamic interactivity and functionality to web pages and is commonly used in conjunction with Microsoft technologies like Active Server Pages (ASP) and Windows Script Host (WSH). However, with the advancement of technology, more modern and efficient options are now available.
Why is VBScript deprecated?
Technology has advanced over the years, giving rise to more powerful and versatile scripting languages such as JavaScript and PowerShell. These languages offer broader capabilities and are better suited for modern web development and automation tasks.
Tip: Deprecation is a stage in the product lifecycle when a feature or functionality is no longer in active development and may be removed in future releases of a product or online service. It’s a gradual process that can span a few months or years. The deprecated feature is usually meant to be replaced by something better, more advanced, or more functional. The feature will typically continue to work and is fully supported until it’s officially removed. After removal, the feature or capability will no longer work. Removing a deprecated component helps reduce complexity while keeping you secure and productive.
VBScript deprecation plan
Considering the decline in VBScript usage in favor of more modern web technologies, we have developed a phased deprecation plan for VBScript. Let’s review the timeline of these changes.
In October 2023, we announced our commitment to providing the best and most efficient experiences by gradually deprecating VBScript. Beginning with the new OS release slated for later this year, VBScript will be available as features on demand (FODs). The feature will be completely retired from future Windows OS releases, as we transition to the more efficient PowerShell experiences.
Deprecation will occur in three phases.
A visual timeline of important dates for VBScript deprecation phases.
Phase 1
In the first phase, VBScript FODs will be pre-installed in all Windows 11, version 24H2 and on by default. This helps ensure your experiences are not disrupted if you have a dependency on VBScript while you migrate your dependencies (applications, processes, and the like) away from VBScript. You can see the VBScript FODs enabled by default at Start > Settings > System > Optional features.
Screenshot of Windows System Settings shows VBScript installed under Optional features.
Phase 2
Around 2027, the VBScript FODs will no longer be enabled by default. This means that if you still rely on VBScript by that time, you’ll need to enable the FODs to prevent your applications and processes from having problems.
Follow these steps if you need to continue using VBScript FODs:
Go to Start > Settings > System > Optional features.
Select View features next to “Add an Optional feature” option at the top.
Type “VBSCRIPT” in the search dialog and select the check box next to the result.
To enable the disabled feature, press Next.
Screenshot of a dialog box for adding an optional feature with a checkbox next to VBScript.
Phase 3
VBScript will be retired and eliminated from future versions of Windows. This means all the dynamic link libraries (.dll files) of VBScript will be removed. As a result, projects that rely on VBScript will stop functioning. By then, we expect that you’ll have switched to suggested alternatives.
VBA projects that use VBScript
Visual Basic for Applications (VBA) allows users to automate repetitive tasks and customize functionalities within Microsoft Office suite. This includes Excel, Word, PowerPoint, Access, and some other applications. With VBA, you’ve been able to write scripts (macros) to manipulate data, create custom forms, automate reports, interact with other applications, and perform various other tasks to streamline workflows and enhance productivity.
Currently, VBScript can be used in VBA for two scenarios:
Scenario 1: Call a .vbs script directly from VBA.
Scenario 2: Use VBScript as typelib reference (such as VBScript regular expression) in VBA.
You can keep using the existing solutions if your VBA solutions have the scenarios above, as Phase 1 won’t affect you. But future phases will affect you, so watch out for new developments.
If you see a runtime error or compile error while executing the VBA projects, check that the VBScript FODs aren’t disabled by admin setting.
Next steps if my app or website has dependency on VBScript
Consider two modern solutions to replace VBscript: PowerShell and JavaScript.
Migrate to PowerShell
We recommend migrating to PowerShell if you:
Have websites or applications dependent on VBScript for automating tasks.
Use VBScript custom actions as a feature in installer packages. During setup process, these custom actions can use the installation session and perform complex tasks. These custom actions may stop working after deprecation.
In these cases, we recommend you migrate to PowerShell. Learn how to do that at Converting VBScript to Windows PowerShell.
Migrate to JavaScript
As VBScript functionality is currently limited to browsers predating Internet Explorer 11, we recommend migrating your webpages to JavaScript before phase 2. JavaScript offers cross-browser compatibility, working seamlessly across modern browsers such as Microsoft Edge, Mozilla Firefox, Google Chrome, and Apple Safari. Notably, these browsers have never implemented support for VBScript.
If your webpage functions properly across these modern browsers, then VBScript isn’t involved, and its deprecation won’t affect you.
Start planning your migration and stay in touch!
We’re here to help you with the latest updates around VBScript deprecation and to provide additional support as you migrate your dependencies during phases 1, 2, and 3.
Are there any special considerations or scenarios that you’d like to talk about? Please leave us a comment below.
In the meantime, check out additional resources related to VBScript functionality and deprecation:
Creating Scripts Using Visual Basic
VBScript is no longer supported in IE11 edge mode (Windows)
PowerShell Documentation – PowerShell
About Scripts – PowerShell
Regular Expression (RegExp) Object
Continue the conversation. Find best practices. Bookmark the Windows Tech Community, then follow us @MSWindowsITPro on X/Twitter. Looking for support? Visit Windows on Microsoft Q&A.
Microsoft Tech Community – Latest Blogs –Read More
Revolutionizing Data Intelligence: Azure Databricks Updates
Data Intelligence Platform in Azure Databricks is revolutionizing the Data and AI landscape. This fully managed service, which is built on Lakehouse architecture supported by Delta Lake, and is integrated with Microsoft Azure cloud capabilities, streamlines data, analytics, and AI initiatives by removing infrastructure concerns. Databricks was recently named a Leader in the 2024 Forrester Wave for Data Lakehouses, earning the highest scores in both strategy and current offerings, and excelling in areas like GenAI/LLM, integration, and security. The close partnership between Databricks and Microsoft enhances this integration, enabling users to focus on their data and AI goals and makes Azure the optimal public cloud for Databricks.
The platform’s Data Intelligence Engine, DatabricksIQ, is powered by advanced generative AI models to autonomously optimize performance and infrastructure based on the unique characteristics of your data and workloads. Supporting both structured and unstructured data in the Delta Lake format, Azure Databricks combines the best elements of data lakes and data warehouses into a unified system for data storage, processing, security, and governance, facilitating efficient management of data and AI assets at scale.
Enhanced Data Governance with Unity Catalog in Azure Databricks
Data and AI governance serves as the intricate yet pivotal foundation for data and AI democratization. Azure Databricks offers a unified solution for data and AI governance with Unity Catalog, natively built into the platform. Unity Catalog uniquely manages data and data assets (such as models) and provides coherent governance across all workloads from analytics to ETL to model serving. It provides centralized access control, auditing, lineage, and AI-powered data documentation and discovery across Azure Databricks workspaces. Leveraging Delta Uniform, Unity Catalog can also provide compatibility for any data format (including Hudi or Iceberg), with a single copy of structured and unstructured data, and federate existing data stores without having to copy data.
DatabricksIQ works with Unity Catalog in Azure Databricks to develop semantic intelligence about your data. Tables and columns are automatically documented to ensure all data is properly understood. Intelligent search capabilities then assist all users in discovering the tables, notebooks, models, and dashboards most relevant to what they need and have access rights to use.
DatabricksIQ works with Unity Catalog to enable AI-powered optimization, monitoring, and observability. Unity Catalog in Azure Databricks also ensures data integrity and consistency across workspaces, facilitating collaboration and regulatory compliance. Administrators can set fine-grained access policies, track data provenance in real-time, and manage a comprehensive inventory of data and AI assets like AI models, features, and notebooks. Additionally, Unity Catalog facilitates automated monitoring, error diagnosis, data quality maintenance, and proactive alerts for issues like personally identifiable information (PII) breaches and model drift. Built-in system tables for billing, auditing, and compute provide 360° observability into operations.
Finally, Unity Catalog in Azure Databricks makes it easy to collaborate among data teams with native support for Delta Sharing, an open source standard for securely sharing files, tables, AI models, notebooks, and dashboards across clouds, regions and data platforms.
Advanced Data Warehousing with Azure Databricks SQL
Building on these foundational capabilities, Azure Databricks SQL (DBSQL) provides intelligent data warehousing capabilities and integrates seamlessly with Power BI in Microsoft Fabric, enabling users to perform complex analytics and derive insights from their data. DB SQL supports SQL-based querying, allowing users to interact with data using familiar language constructs. The integration with Power BI is facilitated through a native Databricks connector, which supports secure and efficient data delivery directly from the Lakehouse. Additionally, DBSQL provides advanced features such as support for streaming tables, materialized views, window functions, user-defined functions, and AI Functions, empowering data analysts and data scientists to tackle sophisticated analytical tasks simply.
DBSQL is powered by DatabricksIQ. Predictive capabilities help ensure optimal query price/performance. Data analyst and developer productivity is also enhanced through text-to-SQL assistance to author code, remediate errors, and explain documentation.
Zero-management computation at scale with Serverless
Azure Databricks is one click away in the Azure Portal, and warehousing, ETL, or machine learning can be leveraged while letting Azure handle all of the machine provisioning and orchestration in the new Serverless capabilities. This leverages AI to prewarm capacity, autoscaling to your needs and charging you when your code runs.
Mosaic AI: Production-quality AI and ML Solutions
Beyond data management and analysis, Mosaic AI within Azure Databricks addresses the growing demand for both Generative AI and traditional AI use cases, tightly connected to all of your enterprise data. Mosaic AI is an end-to-end solution for building, deploying, and monitoring AI – from predictive modeling to the latest GenAI and large language models (LLMs) on top of Unity Catalog, but it is challenging to operationalize LLM applications in IT environment. As a core component of Azure Databricks, Mosaic AI LLMOps enables organizations to securely and cost-effectively integrate their enterprise data into the AI and GenAI lifecycle. Mosaic AI Retrieval Augmented Generation (RAG) platform enables organization to easily use their enterprise data to augment and fine-tune LLMs like Azure OpenAI, DBRX, or Meta Llama 3. Users can also build their own custom LLMs from scratch with their own data, reducing LLM hallucination risk, and powering it with a semantic understanding of their business without sending data and IP outside their walls. Azure Databricks RAG platform architecture is illustrated in the following diagram.
Mosaic AI offers this flexibility while maintaining governance, monitoring, and security across the full AI/ML lifecycle from data to models to meet the most stringent compliance requirements. These capabilities collectively allow organizations to deliver production-quality AI applications that are accurate, safe, and well-governed with Azure Databricks.
In summary, Azure Databricks is infused with AI, making it the simplest, most unified way to bring intelligence to all your data and AI needs. Azure Databricks as Data Intelligence Platform, offers a comprehensive solution for organizations seeking to harness the power of their data -. With robust governance, advanced data warehousing capabilities, and transformative MLOps, LLMOps, generative AI features, and deep seamless integration with Azure services and workloads, Azure Databricks empowers data-driven decision-making and innovation at scale.
Get started with Azure Databricks today:
Azure Databricks – Open Data Lakehouse in Azure | Microsoft Azure
Microsoft Tech Community – Latest Blogs –Read More
Use Video Cards in Health Bot using Web Chat
There are several ways to display video content inside a Health Bot conversation using WebChat client.
One of these ways is to use “VideoCard” attachment as part of a prompt or a statement in your Health Bot scenario flow.
There are several ways to display video content inside a Health Bot conversation using WebChat client.
One of these ways is to use “VideoCard” attachment as part of a prompt or a statement in your Health Bot scenario flow.
Read More
Microsoft Graph API using for external user
We have been working with the Microsoft Graph API to fetch the mail list of an external user using the following endpoint: https://graph.microsoft.com/v1.0/me/messages. However, we are encountering an issue with the response returned by the API. The response is as follows:
As you can see, the response does not include any list of mails. The value array is empty.
Could you please provide guidance on why this might be happening?
We have been working with the Microsoft Graph API to fetch the mail list of an external user using the following endpoint: https://graph.microsoft.com/v1.0/me/messages. However, we are encountering an issue with the response returned by the API. The response is as follows: stdClass Object ( [@odata.context] => https://graph.microsoft.com/v1.0/$metadata#users(‘4e75df4a-021c-457d-a7b4-8bcabaae1cbb’)/messages [value] => Array ( ) ) As you can see, the response does not include any list of mails. The value array is empty.Could you please provide guidance on why this might be happening? Read More
Issues moving from Exchange Server to Management Tools
We have a hybrid environment and run scripts remotely to an Exchange server for user management. It is time to upgrade our infrastructure. Seeing that Exchange Management Tools has no ability to allow remote script execution. Are we still required to do a full install of Exchange Mailbox servers while having no mailboxes on-premise? Anyone have any tips on ability to move away from exchange Server to Management Tools?
We have a hybrid environment and run scripts remotely to an Exchange server for user management. It is time to upgrade our infrastructure. Seeing that Exchange Management Tools has no ability to allow remote script execution. Are we still required to do a full install of Exchange Mailbox servers while having no mailboxes on-premise? Anyone have any tips on ability to move away from exchange Server to Management Tools? Read More
Replacing third party drive encryption with Bitlocker
I wanted to know if possible to use double encryption i.e. deploy bitlocker while having a third party encryption for drives enabled already.
Hello All,I wanted to know if possible to use double encryption i.e. deploy bitlocker while having a third party encryption for drives enabled already.The idea is to deploy bitlocker for devices with third party encryption such as symantecs drive encryption then phasing out symantecs encryption later. Is that supported and if so, How do we go about it?We have tested already using bitlocker while symantecs is enabled and after restarting, as soon as we get past the symantecs login screen, Bitlocker recovery screen is shown and we have to use the key. Also D drive does not seem to get encrypted even though full disk encryption is on in the policy and D is not a system drive. maybe because Symantecs encryption is still enabled? or pending decryption?The settings mainly used are for silent enablement(allow third party warning: disabled).I would appreciate if you have the best practice for similar scenarios. Read More
