Skip to content

MAHARJAN-BINOD

"Innovate, Implement, Inspire."

Menu
    • Azure (AZ) – MAIN
      • Azure Communication Service
      • Azure-Site-Recovery
    • Blog
    • Group Policy Series
    • Microsoft365 – MAIN
      • M365-Intune
      • SharePoint-Online (SP-Online)
    • My Blogs
    • Office-Online-Server (OOS)
    • Windows-Server-Update-Service (WSUS)
    • MAHARJAN-BINOD
    • Active-Directory (AD) – MAIN
      • ACTIVE DIRECTORY CERTIFICATE SERVICES
      • ACTIVE DIRECTORY DOMAIN SERVICES
      • AD Security Hardening
      • AD-PowerShellScript
      • AZURE-ADCONNECT
      • DOMAIN NAME SERVER (DNS)
      • FILE-SERVER
      • GPOs
    • Exchange – MAIN
      • Exchange-Server-2019-CU13
      • Exchange-Server-2019-CU15
      • Exchange-Server-SE
      • MFA-FOR-OWA

binod.maharjan

ACTIVE-DIRECTORY / AD-CS / EXCHANGE-ONPREMISE / MICROSOFT-EXCHANGE

Securing Exchange OWA/ECP with a Self-Signed Certificate from Enterprise CA

🔧 Overview By default, Exchange Server uses a self-signed certificate for OWA (Outlook Web App) and ECP (Exchange Control Panel). However, this cert is not trusted by clients, leading to …

HYPER-V

How to Bypass Network Connection Requirement During Windows 11 Setup in a Hyper-V VM?

If you’re setting up Windows 11 in a virtual machine (VM) — especially in Hyper-V — you might hit a roadblock: Windows 11 forces a network connection during Out-Of-Box Experience …

ACTIVE-DIRECTORY / AD-DS

How to Restrict Domain Join Permission in Active Directory?

Introduction In many Active Directory environments, any authenticated domain user can join up to 10 computers to the domain by default. While this might be convenient, it poses a security …

HYPER-V

Why Windows 11 OS Does Not Run in Hyper-V VM?

Introduction As a system administrator and IT enthusiast, I often experiment with various operating systems in virtual environments like Hyper-V. When Windows 11 was released, I was eager to test …

MFA-ADSELFSERVICE PLUS

🔐 Why Users Weren’t Prompted for MFA on the Web Portal (And How I Fixed It)

After I enabled and tested MFA for Windows logon, I noticed something odd — users who had already enrolled for MFA were not being prompted for MFA when logging into …

ACTIVE-DIRECTORY / AD-CS / MFA-ADSELFSERVICE PLUS

🛡️ How I Secured ADSelfService Plus Web Server with an Internal CA Certificate

When deploying ADSelfService Plus in an enterprise environment, one of the first things I wanted to do was replace the default self-signed SSL certificate with a certificate issued by our …

EXCHANGE-ONPREMISE / MFA-ADSELFSERVICE PLUS

How I Configured MFA for Exchange OWA and Windows Endpoints Using ManageEngine ADSelfService Plus

Introduction In this post, I will walk you through how I configured and tested Multi-Factor Authentication (MFA) using ManageEngine ADSelfService Plus for both Windows endpoints and Exchange OWA. I set …

EXCHANGE-ONPREMISE / MICROSOFT-EXCHANGE

Securing Exchange Management Shell (EMS)

When managing Exchange Server, the Exchange Management Shell (EMS) is one of the most powerful tools at my disposal. But with great power comes great responsibility—especially when it comes to …

EXCHANGE-ONPREMISE / MICROSOFT-EXCHANGE

Sending Spoofed Emails via Telnet and Analyzing Message Headers (Plus Mass Mail Deletion Script)

Introduction In this post, I will demonstrate how an email can be sent using Telnet — often mimicking spam or spoofed emails — and how to analyze the message headers …

MICROSOFT-AZURE

How I Safely Resize Azure VMs (Change SKU Without Breaking Things)

Sometimes I need to upgrade or downgrade a virtual machine in Azure — maybe to get more CPU, RAM, or premium disk support. Instead of rebuilding from scratch, I just …

Posts navigation

Older posts
Newer posts
Copyright © 2026 MAHARJAN-BINOD. All rights reserved.