Deployment Archives - www.butsch.ch

Deployment GPO | Gruppenrichtlinien Intunes Scripting SECURITY

Proxy settings der Cryptography API bei Zertifikatswiderrufslisten (CRL) von einem CRL-Verteilungspunkt

23.04.2024 admin

Dieser Artikel zielt darauf ab, den Prozess zu erläutern, den die Crypto API durchläuft, um erfolgreich eine HTTP-basierte URL für den CRL-Verteilungspunkt herunterzuladen. Er dient auch der Fehlerbehebung in Situationen, die mit der Netzwerkrückgewinnung von CRLs verbunden sind. Zusätzlich wird unser kostenloses Tool, crlcheck.exe, erwähnt, das dazu beitragen soll, komplexe Probleme effektiver zu lösen. […]

Deployment ENS | Endpoint Security FW Fortigate FW Sophos Mcafee/Trellix Scripting SECURITY

Certutil.exe –url –urlcache how to use and freeware GUI crl check to automate CRL verify

21.04.2024 admin

How to use Microsoft certutil.exe –url or –urlcache to find CRL and OCSP on Windows manually, or utilize our freeware tool crlcheck.exe, which performs the same function fully automatically for all EXE files on your system. crlcheck.exe https://www.butsch.ch/post/crlcheck-exe-certificate-revocation-list-check-tool-to-verify-all-crl-and-ocsp-on-windows-client/ What is a CRL Certificate Revocation List file? Each certificate authority (CA) periodically issues […]

CRUNCH ENS | Endpoint Security FW Fortigate FW Sophos GPO | Gruppenrichtlinien Intunes M365 - Exchange Online M365,AZURE,INTUNE Mcafee/Trellix Microsoft SCCM,MEM,MDT Microsoft Server OS Scripting Tools we made Uncategorized W10 WSUS

CRL check, Zertifikatsperrlisten Software, Certificate Revocation List Check Tool zum suchen aller geblockten CRL in Firmenumgebungen, crlcheck.exe

06.04.2024 admin

Mit diesem Tool findet man schnell und einfach alle verwendeten CRL eines clients und kann prüfen ob der client diese erreicht. In den vergangenen Jahren habe ich persönlich miterlebt, wie die Zertifikatssperrung auf Windows-Systemen oft unterschätzt wird, selbst in großen Unternehmen. Dieses Problem beeinträchtigt sowohl Client- als auch Server-Systeme erheblich, wenn es nicht korrekt […]

Deployment Hotfixes, Updates WSUS

Problematic W11 preview patch KB5035942 do not install rollback HP laptop seen

03.04.2024 admin

Patch: 2024-03 Cumulative Update Preview for Windows 11 Version 23H2 for x64-based Systems (KB5035942) OS Builds : 22621.3374 22631.3374 Patch details: March 26, 2024—KB5035942 (OS Builds 22621.3374 and 22631.3374) Preview – Microsoft Support https://support.microsoft.com/en-us/topic/march-26-2024-kb5035942-os-builds-22621-3374-and-22631-3374-preview-3ad9affc-1a91-4fcb-8f98-1fe3be91d8df The KB5035942 preview patch seems to make some problem on different brands of systems. Some customer reported bluescreen or […]

CRUNCH Deployment DLP | Data Loss Prevention ENS | Endpoint Security Exchange 2010 Exchange 2013 Exchange 2016 Exchange 2019 FW Fortigate FW Sophos Intunes M365 - Exchange Online Mcafee/Trellix Microsoft Exchange Microsoft SCCM,MEM,MDT Microsoft Server OS MSME | Security for Exchange Scripting SECURITY Server 2016 Server 2022 [21H2/22H2/32H2] TIE/ATD/ATP | Sandbox - Advanced Threat Protection Tools we made VMWare W10

CRLcheck.exe Certificate Revocation List Check Tool to verify all CRL and OCSP on Windows client

23.03.2024 admin

CRLcheck.exe Certificate Revocation List Check Tool to automatic verify CRL and OCSP internet reachability of all your EXE files that your client runs. Over the past 20 years, I have personally witnessed how Certificate Revocation on Windows systems is often underestimated, even within large enterprises. This issue significantly affects both client and server […]

Deployment Intunes M365,AZURE,INTUNE Scripting

INTUNES-MEM: 32 or 64-bit Runtime and Registry Hive explained (WOW6432Node)

27.01.2024 admin

The normal Intunes Agent that is running on a Windows 10/11 64-bit OS is a 32-bit Agent. INTUNES-MEM: 32 or 64-bit Runtime and Registry Hive explained (WOW6432Node) Short sample why you maybe landed here…. What is the problem that we often see: A Win32APP with import_registry.cmd or import_registry.ps1 is run via Intunes. Before deployment […]

Deployment FW Fortigate FW Sophos Intunes KEMP Load Balancer Microsoft SCCM,MEM,MDT SECURITY

Mastering Firewalls for Intunes and Autopilot Success, FQDN, IP, CRL to get Intunes running

24.11.2023 admin

Mastering Firewalls for Intunes and Autopilot Success In the realm of IT, especially with the advent of cloud-based systems like M365 and Intune, managing firewalls has evolved into a complex challenge. Gone are the days of a handful of external ports; now, it’s like navigating a digital maze of ports and IP ranges. Enter the […]

CRUNCH Deployment FW Fortigate M365,AZURE,INTUNE W10

Missing entry in Fortigate Application Filter ROOT.CERTIFICATE.URL and OCSP source of W10 Setup failing

24.11.2023 admin

FortiGate Application Filter Certificate wrong/missing Entry sample for an important laptop driver (W10 Deployment fails because of signed Driver Revocation Lookup) Missing entry in Fortigate Application Filter “ROOT.CERTIFICATE.URL” and “OCSP” source of failing Windows 10 Deployment with commercial Deployment Products (This includes HP client hardware, Microsoft SCCM, Landesk or Ivanti Frontrange). During the Unattend phase […]

Deployment M365,AZURE,INTUNE Mcafee/Trellix

MS Intunes Antivirus Exclusion Process and Directory

09.11.2023 admin

Antivirus Exclusion for NON Windows Defender In the world of IT security, antivirus tools like Windows Defender are our go-to guardians against all sorts of threats. But sometimes, we need to make exceptions for certain stuff related to Microsoft Intune. Now, here’s the deal (See end of this Blog entry below) Windows Defender has this […]

Deployment VMWare

VMWare vCenter Lücke, CVE-2023-34048 and CVE-2023-34056 Rating 9.8/10 DRINGEND, Angriff Public verfuegbar

25.10.2023 admin

CVE-2023-34048 and CVE-2023-34056 Rating 9.8/10 DRINGEND, Angriff Information Public verfügbar Sämtliche VCENTER von neuer Lücke betroffen EXPLOIT code im Umlauf. Patche für aktuelle und alte VCENTER Versionen ab sofort https://www.vmware.com/security/advisories/VMSA-2023-0023.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-34048 https://docs.vmware.com/en/VMware-vSphere/8.0/rn/vsphere-vcenter-server-80u1d-release-notes/index.html Betroffene Produkte – VMware vCenter Server – VMware Cloud Foundation Einführung Ein Out-of-Bounds Write (CVE-2023-34048) und eine teilweise Informationsfreigabe (CVE-2023-34056) im vCenter […]

Deployment Mcafee/Trellix SECURITY TIE/ATD/ATP | Sandbox - Advanced Threat Protection

Mcafee/Trellix: ATP/TIE Threat Intelligence Exchange im Einsatz

11.10.2023 admin

Ransomware in der Schweiz Lösungsansätze für mehr Cybersicherheit Die Bedrohung durch Ransomware in der Schweiz erfordert intelligente Lösungen. Eine effektive Methode, die sich bewährt hat, ist der Einsatz von “Black/White-Listing” Technologien, wie sie beispielsweise von McAfee TIE bereitgestellt werden. Diese fortschrittliche Technologie, die auf intelligenter Listenführung basiert, stellt derzeit die einzige wirksame Lösung dar, um […]

Deployment M365,AZURE,INTUNE VMWare

VMWARE Workspace One, iPhone, iOS 17, Enterprise Wipe after Update. Issue known since 07.07.2023

27.09.2023 admin

VMWARE Workspace One, iPhone, iOS 17, Enterprise WIPI after Update. Issue known since 07.07.2023 to 27.09.2023 and still affects endusers Well; looks like some things change too fast in the modern world workplace. We wish to inform you of a current concern pertaining to Workspace ONE UEM-enrolled iOS devices that have undergone […]

Deployment Intunes Microsoft SCCM,MEM,MDT

Intunes / M365, Deploy Company portal in 2023 via APPX and Line of Business (0x87D1041C)

25.09.2023 admin

Microsoft Intune Company Portal for Windows, APPX Version via Intune and Line of Business App (Avoid 0x87D1041C if you deploy the APP Store version) Problem: Intune users (customers) report that they encounter an issue: the application was not detected after a successful installation (0x87D1041C). You see success rated of 75-80%. That is simply not usable […]

Deployment Scripting

Powershell, Retrieve DisplayName,DisplayVersion,Publisher from Registry or export.REG

05.09.2023 admin

Hello, You need and easy way to get an inventory list of software installed on a machine via Powershell. What we need for a list is: DisplayName;DisplayVersion;Publisher We have two version of the scripts: Version 1 Use regedit and export the HIVES into .REG Files. Copy to your admin machine an then parse the two […]

Deployment M365,AZURE,INTUNE Microsoft SCCM,MEM,MDT

Microsoft SCCM Configmanager latest version tryout and look | Why you still need MDT or SCCM and not only Autopilot

08.08.2023 admin

If you take a closer look at some Autopilot deployment workflow for modern workplace you get unsure how this should be more simple over long strategy? If you compare the workflow to some SCCM version? Well Autopilot already needs two pages correct? 😉 In the past Microsoft has supplied the endcustomer free tools […]


Try our new Certificate Revocation List Check Tool CRLcheck.exe is a tool developed to verify digital signatures of executable files. It collects files from known paths on your client, checks their signature, and checks Certificate Revocation Lists (CRL) and OCSP download. This helps avoid delays in launching files.

Category: Deployment