Last week, we talked about the importance of developing a unified IT policy, and putting that policy down in writing. With a bit of work and patience, you can make sure that other managers, department heads, and the executive team understand and support the policy decisions.
As your business grows, you’ll start outgrowing things that used to meet your needs perfectly well. Things like office space -- what once seemed like more than enough space for your business can turn cramped when it’s time to bring on more people and keep growing.
12th Annual MSP 501 Identifies Top Forward-Thinking Global MSPs & Leading Trends in Managed Services
JUNE 18, 2019: E-N Computers has been named as one of the world’s premier managed service providers on the prestigious 12th-annual Channel Futures MSP 501 rankings.
Last week, we discussed the upcoming changes to DFARS 252.204-7012 -- the Cybersecurity Model Maturity Certification (CMMC). The CMMC will involve serious changes in how defense contractors and subcontractors approach information security for their networks and computer systems.
As your organization grows, you may find yourself growing from an IT department of one to working with a small team -- or more. With that growth will come the need to document processes and procedures that were previously ad-hoc, or “oral tradition” -- answers given in the moment in response to one-off questions.
In June 2019, Dawn Greenman of Johns Hopkins University and Liz Hogan of E-N Computers sat in on a briefing. The Department of Defense announced that it is introducing a new cybersecurity standard for contractors -- the Cybersecurity Maturity Model Certification (CMMC). With cyberattacks and cyber-warfare in the news week after week, it’s no surprise that the Department of Defense is ready to take a harder line on enforcing cybersecurity standards for defense contractors handling sensitive information.
We’ve talked before about having a malware response plan in case one of your endpoints is infected by a virus, trojan, or worm. And while it’s always good to have an action plan, it would be even better if your users were able to avoid getting infected in the first place.
For the last few weeks, we’ve been looking at Microsoft AD Certificate Services PKI. Last week, we went over how to set up an offline Root CA. This week, we’ll get an intermediate Issuing CA set up and ready to issue certificates.
Setting Up the Issuing CA
For the issuing CA, you’ll need a domain-joined server running Windows Server 2016. Go ahead and log on to that server with domain admin credentials.
With the need for users to frequently change their passwords under question, the need for users to pick stronger passwords in the first place becomes apparent. Last week, we talked about one way for sysadmins to sniff out weak passwords in use in Active Directory.
Phishing is big business. Each year, businesses lose millions of dollars to phishing scams and other “social engineering” attacks. So naturally, sysadmins are interested in helping their users to identify and avoid these threats if and when they hit their inboxes.
