www.butsch.ch

CRUNCH Exchange 2013 Exchange 2016 Exchange 2019 M365 - Exchange Online M365,AZURE,INTUNE Microsoft Exchange

M365/Exchange Hybrid OAuth Testing command, OAuth-Cert out-of-sync 4001, IIS VDIR OAuth wrong

21.06.2023 admin

www.butsch.ch Resolve and find OAuth problem in Exchange Hybrid Setup Environment Short Understanding OAuth: OAuth (Open Authorization) is an industry-standard protocol that enables secure authorization for third-party applications without the need to disclose user credentials. It allows users to grant limited access to their resources on one site to another site, without sharing their credentials. […]

Exchange 2019 M365 - Exchange Online M365,AZURE,INTUNE Microsoft SCCM,MEM,MDT Outlook

Verify if you are affected from MS EX1181125, new M365 group member added wrongly had OWNER permission 03.10-31.10.2025

05.11.2025 admin

Error: Some users added as members to a Microsoft 365 group in Outlook on the web may be given “Owner” permissions by default Important Security Notice for M365 Groups Between October 3 and October 31, 2025, Microsoft Exchange Online experienced an issue that affected Microsoft 365 (M365) Groups. During this period, when a new […]

Microsoft Server OS SECURITY Server 2008 R2 Server 2012 R2 Server 2016 Server 2019 Server 2022 [21H2/22H2/32H2] Server 2025 WSUS

Is your SBS environment update ready for 25H2 W11, SMB-Version, smbchecker.ps1

02.11.2025 admin

PowerShell script to check if you SMB setup is 25H2 ready Windows 11 25H2 – Small Update, Big Impact for SMB Environments Windows 11 25H2 is now being offered on home and business systems as an Enablement Pack. This means it’s not a full new installation — instead, it’s a small ~50 MB update […]

Uncategorized

W11 VMWARE Workstation white screen crash when you open EDGE Browser and Nvidia

02.11.2025 admin

Not fixed date 06.11.2025 with 17.6.4 BUILD 24832109 W11 24H2 and 25H2 same behavior. Started 4-5 months ago. VMWARE Pro Update did not resolve. What happens You have VMWARE Workstation PRO running a machine open When you open a NEW EDGE Browser suddenly the W11 freezes and hangs for a few ticks then comes back. […]

Deployment Hotfixes, Updates Scripting Server 2022 [21H2/22H2/32H2] Server 2025 WSUS

WSUS Out of Band Patch Installer – CVE-2025-59287 for all OS automatic

26.10.2025 admin

Powershell skript to force the Out of band patches for WSUS Exploit fully automatic on WSUS. WSUS Out-of-Band Patch Installer – Overview (CVE-2025-59287) for all OS automatic Run our emergency skript direct on your WSUS Server. The 24.10.2025 emergency patches itself are in WSUS. If they are APROVED there our skript will install them from […]

GPO | Gruppenrichtlinien Hotfixes, Updates Intunes M365,AZURE,INTUNE Server 2025 WSUS

W11 24H2 + Server 2025 Hotpatch without Reboot how to set VBS via GPO so it works

05.03.2025 admin

Hotpatching is coming to Windows 11 24H2 Enterprise E3+. Users will be able to patch “Security ONLY” updates on Patch Tuesday without requiring a reboot each time. W11 Hotpatch only available for Windows Enterprise E3 or E5 (e.g. Microsoft 365 A3/A5 or Microsoft 365 F3); or a Windows 365 Enterprise subscription. Windows 11 version 24H2 […]

SQL WSUS

Unable to connect to WSUS WID with SQL Management Studio V20, does not support encryption

25.02.2025 admin

Unable to connect to WSUS WID with SQL Management Studio V20, does not support encryption We just had a customer where a newer version of SQL Server Management Studio was installed to manage the WID (Windows Internal Database) of the WSUS server on a Server 2022 OS. With the EOL for WSUS Server (only […]

M365 - Exchange Online M365,AZURE,INTUNE

Exchange Online SMTP Volumen Limiten für ausgehende E-Mail ab März 2025 – TERRL

25.02.2025 admin

Microsoft führt Limit für ausgehenden SMTP-E-Mail-Flow von Tenants ein Back to the roots? Ein weiterer neuer Grund wieso grössere Firmen gewisse Services zurück on-premise holen? Microsoft beschränkt künftig die Anzahl an E-Mails, die ein Tenant pro Tag versenden kann. Dabei ist zu beachten, dass auch Kalendereinladungen und Terminbenachrichtigungen als E-Mails gezählt werden. Falls durch fehlerhafte […]

Exchange 2019 M365 - Exchange Online M365,AZURE,INTUNE

Exchange Tenant, EXO, EWS Security change (Fehlervermeidung Security), 02-2025

20.02.2025 admin

Exchange Tenant, EXO, EWS Security change (Fehlervermeidung Security) Microsoft verbessert die Sicherheit von EWS und löst das Problem bei der Kombination von “per Tenant” und “per User” Rechten. Dies erleichtert es insbesondere grossen Unternehmen, Compliance-Vorgaben konsequent durchzusetzen. Ein wesentlicher Grund für diese Änderung ist, dass viele Personen im M365-Portal oder über Graph API Änderungen vornehmen, […]

Server 2016 VMWare WSUS

Packet loss older NIC VMWARE 1.9.11.0 on ESXi 8.0.2

20.02.2025 admin

Packet loss with VMXNET3, NIC VMWARE, 14.09.2022, 1.9.11.0, Server 2016 ON ESXi 8.0.2, 238255 Did you update the NIC driver when migrating to ESX V8? We recently encountered issues on a server running WSUS and Trellix ePO, which normally generate a lot of traffic in all directions. For several days, I observed sporadic packet loss […]

M365,AZURE,INTUNE Microsoft Server OS Server 2025 WSUS

Inplace Upgrade of WSUS Server 2016 to 2025 in one step

17.02.2025 admin

English: In-Place Upgrade: WSUS Server from Server 2016 to Server 2025 Good news for IT admins and engineers: An in-place upgrade from Windows Server 2016 to Server 2025 for WSUS is now fully feasible. During our tests, we successfully migrated the entire WSUS server role, including all prerequisites, WSUS content, console views, and approval settings, […]

Hotfixes, Updates Intunes WSUS

Block 24H2 W11 Update which comes with februar Patchday 02-2025

12.02.2025 admin

The Microsoft 02-2025 Patchday brings a hidden surprise for all valid systems. It pre-downloads and offersthe 24H2 W11 Feature Update. Most of the existing problems target home/gamer users, but still,some people would like to block the update on single systems. Pre-download folder for W11 > W11 Release Migration, around 450 MB you see if too […]

DLP | Data Loss Prevention ENS | Endpoint Security EPO | ePolicy Orchestrator Mcafee/Trellix

Trellix ePolicy Orchestrator 5.10.0 Service Pack 1 Update 4

05.02.2025 admin

Trellix ePolicy Orchestrator 5.10.0 Service Pack 1 Update 4 We have installed the latest Update 4 on several customer on-premises EPO installation and the update works fine and without any problems. Key Considerations for Updating Trellix ePO 5.10 SP1 to the Latest Rollup 4 Check your ePO database size. Some Trellix SP or Rollup […]

Deployment GPO | Gruppenrichtlinien Hotfixes, Updates Scripting

Microsoft EDGE fails to Update from WSUS, from MSI-file or repair APPS because of GPO, 0x80070643, 1722

16.01.2025 admin

Microsoft EDGE fails to Update from WSUS, from MSI-file or repair APPS because of GPO, 0x80070643, 1722 Cause: GPO / EdgeUpdate Policies In this case, we have a GPO (Group Policy) created by or for a customer who uses Firefox as the default browser because a Citrix engineer advised them that this was the best […]

Scripting

Auto resize pictures in Winword for a blog Post automatic with VBA macro

02.01.2025 admin

WHO: You Blog with Winword to WordPress or Blogengine.net and want to auto resize the pictures direct in Winword (Not in the blog with some risky plugin) I do not like macros in any form due to security reasons (we block them wherever we can), but there might be a reason to use one locally […]

Deployment Microsoft SCCM,MEM,MDT

MDT/SCCM, bluescreen intcpmt.sys, 3.1.2.2 A0 on W10 1909, Intel Platform Technology on Dell 5690

28.11.2024 admin

MDT/SCCM, bluescreen intcpmt.sys, 3.1.2.2 A0 on W10 1909, Intel Platform Technology driver on DELL 5690 We have a customer where, besides other OS releases, we still run Windows 10 1909 because they have so many different DELL laptop models. We roll out 1909 and then silently update it to Windows 10 21XX afterward. This […]


Try our new Certificate Revocation List Check Tool CRLcheck.exe is a tool developed to verify digital signatures of executable files. It collects files from known paths on your client, checks their signature, and checks Certificate Revocation Lists (CRL) and OCSP download. This helps avoid delays in launching files.

Highroller