As virtualization continues to mature and hybrid cloud models become the norm, one architectural principle consistently proves itself essential for both resilience and security: the separation of workload and management. In VMware environments—whether traditional vSphere, VMware Cloud Foundation (VCF), or hybrid…
Creating a Zero Trust Architecture (ZTA) in a VMware-based brownfield environment is not about installing a single product — it’s a strategic, multi-layer redesign of trust boundaries across users, workloads, networks, and data. Below is a comprehensive roadmap and reference…
Not everyone uses a MAC, for the windows users out there, lets look at an alternative to store and use credentials in a safe manner. Store Credentials Use Credentials Security Notes: On Windows operating systems, “user context” refers to the…
Having usernames and passwords in cleartext in scripts is a horrible security practice. Many companies have been hacked due to passwords being found on GitHub and similar sites. Having to type them in manually every time you run a script…
A current use case I have is to gather all the Service Tags for my Dell Server environment, which is in the hundreds. Collecting them manually will be a nightmare. This is where scripts make the world so much easier.…
ESXi Lockdown Mode is a security feature in VMware ESXi that restricts direct access to the ESXi host, allowing access only through vCenter Server. This feature is designed to enhance security by preventing unauthorized users from modifying the ESXi host…
Encrypting data drives makes sense on a laptop. If you turn it off and it gets lost, a key has to be provided to decrypt the data on the drives to make it readable. But what about the disks of…
Option 1: Duo MFA for RDP (fast, easy, proven) Pros: High-level install steps: ▶ Link to official Duo guide:Duo MFA for Windows RDP – Step-by-Step Option 2: Azure MFA with NPS Extension (Microsoft “native” method) Pros: High-level install steps: ▶ Link to official Microsoft guide:Configure NPS…
