Month: December 2018

New Skype for Desktop (Windows) is available here:

https://go.skype.com/windows.desktop.download  mirror

 

Silent Install

setup.exe /VERYSILENT /SP- /NOCANCEL /NORESTART /SUPPRESSMSGBOXES /NOLAUNCH -ms

 

Uninstall

Reg Keys

“HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Skype_is1”

Command

“C:\Program Files (x86)\Microsoft\Skype for Desktop\unins000.exe” /SILENT

 

Notes

Disable Skype auto updates

New Chrome browser is available here:

https://enterprise.google.com/intl/en_version/chrome/chrome-browser/   mirror

 

Size

53.8 MB

Product Code

{A9EACB46-9179-3C2D-A196-62006713EC8E}

Silent Install

setup.msi /quiet /norestart

 

Release Notes

Chrome Browser updates

• Change to using PAC scripts to configure proxy settings in Chrome
  If you’re using a Proxy Auto Config (PAC) script to configure Chrome’s proxy settings, you might be affected by this change. This is especially so if your PAC script depends on anything other than the scheme, host, or port of incoming URLs.The PacHttpsUrlStrippingEnabled policy strips privacy and security-sensitive parts of https:// URLs before passing them on to PAC scripts used by Chrome Browser during proxy resolution. For example, https://www.example.com/account?user=234 will be stripped to https://www.example.com/.This policy will change the default value from False to True to improve security. If you already set this policy to True, there’s no impact. If you set it to False, there’s no immediate impact. If you haven’t set this policy and are relying on the default, test this change to see how your PAC scripts operate. This policy will be removed in a future release when PAC stripping becomes the default for Chrome.

• Deprecate trust in remaining Legacy Symantec PKI Infrastructure
  This change is present in all release channels: Canary, Dev, Beta, and Stable. Users observing the distrust in Chrome 70 should experience the exact same behavior in Chrome 71 and later. For a small percentage of users, Chrome 71 will be the first time they experience the distrust, which could result in more problems involving related errors.Find instructions on how to determine whether a site is affected and any corrective action needed, as well as a description of past changes.

Chrome OS updates

• Fingerprint and PIN enrollment in Chrome device Out of Box Experience (OOBE)
  For tablets that support fingerprint and/or PIN, users can enroll a fingerprint or set up a PIN while signing in to the device for the first time.
• Connect to your Android phone
  Users can connect with their Android phone using a single setup flow to enable Smart Lock, instant tethering, and Android Messages PWA. Android Messages PWA gives users the ability to see, reply to, and start text messages.
• Android Messages for Chrome OS
  Users can text from their Chrome OS by connecting with their Android phone.

• Restrict policy for simplex vs. duplex printing for native (CUPS) printers
  Admins can restrict users to one-sided or 2-sided printing with native (CUPS) printing. Users can’t manually change the setting on the device. See details in Manage local and network printers.

• Print multiple pages per sheet on native (CUPS) printing
  Native printers using CUPS now support rendering multiple pages of content onto a single sheet of paper. Previously only available for Cloud Print printers, this is now available for all printing destinations.

Admin console updates

• Managing site isolation policies
  Site isolation policies on the desktop get updated to reflect that they’re on by default. (They include controls to turn off site isolation or add specific site rules.) New policies are added to the Admin console for Chrome on Android. For more, see Protect your data with site isolation.

New and updated policies

Policy	Description
AllowWakeLocks Chrome OS only	Specifies whether wake locks are allowed. Wake locks can be requested by extensions through the power management extension API and by ARC apps.
NetworkFileSharesPreconfiguredShares Chrome OS only	List of preconfigured network file shares.
NTLMShareAuthenticationEnabled Chrome OS only	Network File Share feature. This policy controls enabling NTLM as an authentication protocol for SMB mounts.
SmartLockSigninAllowed Chrome OS only	Allow Smart Lock Sign-in to be used.
VpnConfigAllowed Chrome OS only	Allow the user to manage VPN connections.
WebUsbAllowDevicesForUrls All operating systems	Automatically grant permission to these sites to connect to USB devices with the given vendor and product IDs.

Deprecations

• EnableSha1ForLocalAnchors policy
  Enterprises that needed time to migrate following the 2014 announcement to sunset SHA-1 were able to configure an Enterprise policy to enable support for SHA-1 for locally installed, privately trusted Certificate Authorities. Support would be removed in January 2019 at the latest, which corresponds to Chrome 72. Enterprises that rely on server certificates that use the SHA-1 algorithm in the certificate chain will find that Chrome 72 will refuse to connect, presenting an untrusted certificate error. These certificates should be replaced with SHA-2 certificates to avoid any disruption.

• SupervisedUserCreationEnabled policy (deprecated in Chrome 70)
  Read about consumer supervised users.

Coming soon

Note: The items listed below are experimental or planned updates. They might be changed, delayed, or canceled before launching to the Stable channel.

Upcoming Chrome Browser features

• The Chrome Cleanup Tool will quarantine—instead of deleting—files it detects as malicious
  The Chrome Cleanup Tool helps users remove unwanted software on their computers. The removal process includes deleting malicious files in the system. However, to lessen the risk of safe files being erroneously deleted, files will be moved into quarantine instead of getting deleted permanently. For more, learn about removing unwanted programs and the Chrome Cleanup Tool policy.

• PacHttpsUrlStrippingEnabled policy (scheduled to be deprecated in Chrome 74)
  See the above note on Change to using PAC scripts to configure proxy settings in Chrome.
• SSLVersionMax policy (scheduled to be deprecated in Chrome 75)
  SSLVersionMax can be used as a short-term workaround while TLS 1.3 is rolled out. This allows time for middleware vendors to update their TLS implementations. The policy will be removed in Chrome 75.
• Third-party code injection
  The Chrome 70 release notes stated that in Chrome 71, third-party code blocking will be enabled by default for everyone, including domain-enrolled users. However, due to an issue with anti-virus file scanning, we’re delaying this change until we have a solution that better covers customers’ needs.
• All extensions must be packaged with CRX3 format by Chrome 75
  Starting with Chrome 75, all force-installed extensions will need to be packaged in the CRX3 format. Privately hosted extensions that were packaged using a custom script or a version of Chrome prior to Chrome 64.0.3242.0 must be repackaged.If your organization is force-installing privately hosted extensions packaged in CRX2 format and you don’t repackage them, they’ll stop updating in Chrome 75. New installations of the extension will fail.Why is this change happening?CRX2 uses SHA1 to secure updates to the extension. Breaking SHA1 is technically possible. So, an attacker might intercept the extension update and inject arbitrary code into it. CRX3 uses a stronger algorithm, avoiding this risk.

Upcoming Chrome OS features

• Always-on VPN for managed Google Play
  Admins can install Android VPN apps on Chromebooks. However, users have to start the VPN app manually.Soon, admins can set an Android VPN app to start a connection when a device is turned on and direct all user traffic (Chrome OS and Android) through that connection. If the connection fails, all user traffic is blocked until the VPN connection is re-established. VPNs in Chrome OS don’t apply to any system traffic, such as OS and policy updates to prevent security exploits.
• Android 9.0 support coming to certain Chrome devicesDevices running Chrome OS that currently support Android 7.0 Nougat will be upgraded to support Android 9.0 Pie. Dates and affected devices haven’t been announced. We’ll include more information in future release notes when it comes available.

Upcoming Admin console features

• Native printer-management improvements
  The 20 printer maximum cap will be raised to allow for several thousand printers for each organizational unit in the Google Admin console.

• Managed guest session support for managed Google Play
  A setting in the Google Admin console will allow Android apps to run in managed guest sessions (previously known as pub

 

Notes

https://support.google.com/chrome/a/answer/7679408?hl=en

 

The following Permissions are needed to perform a Client Push Installation:

• Collection
  • Read
  • Modify Resource
• Site
  • Read

New Chrome browser is available here:

https://enterprise.google.com/intl/en_version/chrome/chrome-browser/   mirror

 

Size

53.7 MB

Product Code

{39CFE2F3-E68C-3585-9599-DC99D03FA42D}

Silent Install

setup.msi /quiet /norestart

 

Release Notes

Chrome Browser updates

• Change to using PAC scripts to configure proxy settings in Chrome
  If you’re using a Proxy Auto Config (PAC) script to configure Chrome’s proxy settings, you might be affected by this change. This is especially so if your PAC script depends on anything other than the scheme, host, or port of incoming URLs.The PacHttpsUrlStrippingEnabled policy strips privacy and security-sensitive parts of https:// URLs before passing them on to PAC scripts used by Chrome Browser during proxy resolution. For example, https://www.example.com/account?user=234 will be stripped to https://www.example.com/.This policy will change the default value from False to True to improve security. If you already set this policy to True, there’s no impact. If you set it to False, there’s no immediate impact. If you haven’t set this policy and are relying on the default, test this change to see how your PAC scripts operate.This policy will be removed in a future release when PAC stripping becomes the default for Chrome.

• Deprecate trust in remaining Legacy Symantec PKI Infrastructure
  This change is present in all release channels: Canary, Dev, Beta, and Stable. Users observing the distrust in Chrome 70 should experience the exact same behavior in Chrome 71 and later. For a small percentage of users, Chrome 71 will be the first time they experience the distrust, which could result in more problems involving related errors.Find instructions on how to determine whether a site is affected and any corrective action needed, as well as a description of past changes.

Chrome OS updates

• Fingerprint and PIN enrollment in Chrome device Out of Box Experience (OOBE)
  For tablets that support fingerprint and/or PIN, users can enroll a fingerprint or set up a PIN while signing in to the device for the first time.
• Connect to your Android phone
  Users can connect with their Android phone using a single setup flow to enable Smart Lock, instant tethering, and Android Messages PWA. Android Messages PWA gives users the ability to see, reply to, and start text messages.
• Android Messages for Chrome OS
  Users can text from their Chrome OS by connecting with their Android phone.

• Restrict policy for simplex vs. duplex printing for native (CUPS) printers
  Admins can restrict users to one-sided or 2-sided printing with native (CUPS) printing. Users can’t manually change the setting on the device. See details in Manage local and network printers.

• Print multiple pages per sheet on native (CUPS) printing
  Native printers using CUPS now support rendering multiple pages of content onto a single sheet of paper. Previously only available for Cloud Print printers, this is now available for all printing destinations.

Admin console updates

• Managing site isolation policies
  Site isolation policies on the desktop get updated to reflect that they’re on by default. (They include controls to turn off site isolation or add specific site rules.) New policies are added to the Admin console for Chrome on Android. For more, see Protect your data with site isolation.

New and updated policies

Policy	Description
AllowWakeLocks Chrome OS only	Specifies whether wake locks are allowed. Wake locks can be requested by extensions through the power management extension API and by ARC apps.
NetworkFileSharesPreconfiguredShares Chrome OS only	List of preconfigured network file shares.
NTLMShareAuthenticationEnabled Chrome OS only	Network File Share feature. This policy controls enabling NTLM as an authentication protocol for SMB mounts.
SmartLockSigninAllowed Chrome OS only	Allow Smart Lock Sign-in to be used.
VpnConfigAllowed Chrome OS only	Allow the user to manage VPN connections.
WebUsbAllowDevicesForUrls All operating systems	Automatically grant permission to these sites to connect to USB devices with the given vendor and product IDs.

Deprecations

• EnableSha1ForLocalAnchors policy
  Enterprises that needed time to migrate following the 2014 announcement to sunset SHA-1 were able to configure an Enterprise policy to enable support for SHA-1 for locally installed, privately trusted Certificate Authorities. Support would be removed in January 2019 at the latest, which corresponds to Chrome 72. Enterprises that rely on server certificates that use the SHA-1 algorithm in the certificate chain will find that Chrome 72 will refuse to connect, presenting an untrusted certificate error. These certificates should be replaced with SHA-2 certificates to avoid any disruption.

• SupervisedUserCreationEnabled policy (deprecated in Chrome 70)
  Read about consumer supervised users.

Coming soon

Note: The items listed below are experimental or planned updates. They might be changed, delayed, or canceled before launching to the Stable channel.

Upcoming Chrome Browser features

• The Chrome Cleanup Tool will quarantine—instead of deleting—files it detects as malicious
  The Chrome Cleanup Tool helps users remove unwanted software on their computers. The removal process includes deleting malicious files in the system. However, to lessen the risk of safe files being erroneously deleted, files will be moved into quarantine instead of getting deleted permanently. For more, learn about removing unwanted programs and the Chrome Cleanup Tool policy.

• PacHttpsUrlStrippingEnabled policy (scheduled to be deprecated in Chrome 74)
  See the above note on Change to using PAC scripts to configure proxy settings in Chrome.
• SSLVersionMax policy (scheduled to be deprecated in Chrome 75)
  SSLVersionMax can be used as a short-term workaround while TLS 1.3 is rolled out. This allows time for middleware vendors to update their TLS implementations. The policy will be removed in Chrome 75.
• Third-party code injection
  The Chrome 70 release notes stated that in Chrome 71, third-party code blocking will be enabled by default for everyone, including domain-enrolled users. However, due to an issue with anti-virus file scanning, we’re delaying this change until we have a solution that better covers customers’ needs.
• All extensions must be packaged with CRX3 format by Chrome 75
  Starting with Chrome 75, all force-installed extensions will need to be packaged in the CRX3 format. Privately hosted extensions that were packaged using a custom script or a version of Chrome prior to Chrome 64.0.3242.0 must be repackaged.If your organization is force-installing privately hosted extensions packaged in CRX2 format and you don’t repackage them, they’ll stop updating in Chrome 75. New installations of the extension will fail.Why is this change happening?

  CRX2 uses SHA1 to secure updates to the extension. Breaking SHA1 is technically possible. So, an attacker might intercept the extension update and inject arbitrary code into it. CRX3 uses a stronger algorithm, avoiding this risk.

Upcoming Chrome OS features

• Always-on VPN for managed Google Play
  Admins can install Android VPN apps on Chromebooks. However, users have to start the VPN app manually.Soon, admins can set an Android VPN app to start a connection when a device is turned on and direct all user traffic (Chrome OS and Android) through that connection. If the connection fails, all user traffic is blocked until the VPN connection is re-established. VPNs in Chrome OS don’t apply to any system traffic, such as OS and policy updates to prevent security exploits.
• Android 9.0 support coming to certain Chrome devicesDevices running Chrome OS that currently support Android 7.0 Nougat will be upgraded to support Android 9.0 Pie. Dates and affected devices haven’t been announced. We’ll include more information in future release notes when it comes available.

Upcoming Admin console features

• Native printer-management improvements
  The 20 printer maximum cap will be raised to allow for several thousand printers for each organizational unit in the Google Admin console.

• Managed guest session support for managed Google Play
  A setting in the Google Admin console will allow Android apps to run in managed guest sessions (previously known as pub

 

Notes

https://support.google.com/chrome/a/answer/7679408?hl=en

 

AI Services

THR1071 – Microsoft Cognitive Services, AI, and the rise of the machines

BRK2290 – AI-based vertical solutions: Use pre-trained Cognitive Services

BRK3309 – AI for business optimization: Leveraging custom speech, vision, and search

THR2175 – AI TechTalk: What’s new in Cognitive Services speech recognition products

BRK3293 – AI for predictive insights: Using custom vision and search for pattern analysis and predictive action

THR2185 – AI TechTalk: Easy site search solutions with Bing Custom Search API

THR2172 – AI Tech Talk: Power your apps with Microsoft’s cutting-edge visual search capabilities

BRK3328 – AI at your service: Creating enterprise-scale intelligent agents and bots

BRK3329 – AI for knowledge mining: Using Cognitive Search

BRK3023 – Getting started with Microsoft Search

 

Azure Machine Learning

BRK2304 – AI with Azure Machine Learning services: Simplifying the data science process

THR3098 – AI TechTalk: Azure Machine Learning SDK – a walkthrough

BRK3332 – Generating high quality models efficiently using Automated ML and Hyperparameter Tuning

BRK3331 – AI for pros: Deep learning with PyTorch using the Azure Data Science Virtual Machine and scaling training with Azure ML

BRK3333 – AI everywhere: Open and interoperable platform for AI with ONNX

THR3099 – AI TechTalk: Data science/deep learning VMs in Azure – your launchpad for custom AI solutions

 

SQL Server and Machine Learning

SQL Server Machine Learning Services: An E2E platform for machine learning – BRK2183

GS005 – Making AI real with SQL Server, Azure databases and Azure big data analytics services

THR2096 – Databases, containers, and pods: SQL Server on Kubernetes

BRK2416 – The roadmap for SQL Server

BRK3228 – What’s new in SQL Server on Linux and containers

THR2168 – The next generation of SQL Server tools

BRK4021 – Deep dive on SQL Server and big data

THR2171 – Deploying a highly available SQL Server solution in Kubernetes

BRK4017 – Inside SQL Server containers

THR3027 – Machine learning applications in Microsoft Azure Stack

THR2170 – The future of querying big data with Polybase and SQL Server

THR2361 – Data platform transformation in the Microsoft enterprise

 

Containers

THR3063 – Azure Kubernetes networking 101

BRK2396 – Fundamentals of Kubernetes on Microsoft Azure

BRK3192 – Container DevOps with Microsoft Azure

BRK3208 – Operational best practices for Azure Kubernetes Service

BRK2196 – Architect your app modernization journey with containers on Microsoft Azure

BRK2045 – Fundamentals of Windows containers

 

Programming and Tools

THR2099 – Visual Studio Code for non .Net developers

BRK3196 – Machine learning with ML.NET

THR2201 – Machine learning using Python in Azure Functions

BRK2384 – Infuse AI into your web applications – AI and JavaScript

BRK2235 – Windows Server 2019 System Insights: Simplified ML

BRK2203 – Visual Studio Code tips and tricks

THR2404 – Azure Data Explorer – Query billions of records in seconds!

THR3140 – Using Visio to bring real-world visualizations to Microsoft Power BI

GS001 – An end-to-end tour of the Microsoft developer platform

 

Power BI

THR2052 – Microsoft Power BI: End-to-end enterprise data reporting

BRK2218 – Microsoft Power BI Desktop: Data exploration, analysis and storytelling

 

AI and ML Concepts and Processes

GS009 – Azure AI: Making AI real for your business

THR2174 – AI TechTalk: Anomaly Detection

BRK3068 – Designing workflows in Azure for Artificial Intelligence (AI) scenarios

BRK3187 – Establish the right practices for effective AI

THR2073 – Microsoft Flow: Build a workflow in 10 minutes

 

Logic Apps, Power Apps, Flow

BRK2028 – Hybrid Integration for the enterprise with Azure Integration Services

THR2210 – Build smart integration solutions with the new Azure Logic Apps add in for Visual Studio Code

THR3104 – Be the scheduler hero with Azure Logic Apps

BRK1068 – PowerApps and Microsoft Flow: Best Practices for managing these two applications

BRK2180 – PowerApps: The top 10 new features that will help you build apps with ease

THR2103 – Microsoft Azure Logic Apps vs. Microsoft Flow: When, how, and where

 

Azure

BRK3042 – Five Azure services every .NET developer should know

BRK1026 – Getting started with Microsoft Azure and Azure Portal

THR3066 – Lessons learned: Top mistakes that make Azure projects expensive

THR3093 – Introduction to Microsoft Managed Desktop

THR2302 – A tour of Windows Virtual Desktop

THR2101 – Automate all things with Azure Pipelines

BRK2405 – Getting started with Azure IaaS – compute, storage, and networking

BRK2022 – Become more productive with Microsoft Azure – tips and tricks

THR3067 – Top ten ways to secure your Azure environment

 

Office

THR3017 – Be a data ninja: Best practices for analytics using Microsoft Excel

THR2329 – Design and automate business workflows using Excel, Microsoft Flow, and Visio

BRK3082 – Advanced analytics in Microsoft Excel

BRK2081 – What’s new in Microsoft PowerPoint and Microsoft Word: Unleash your creativity with AI

BRK2122 – What’s new in Microsoft Excel: Machine learning-powered insights

THR2137 – OneNote life hacks

THR1024 – Ten Excel features you’ll wish you’d known earlier

THR2338 – Introduction to Microsoft Stream: Engage and inform your organization with intelligent video

 

Data Factory

BRK2204 – Azure Data Factory – Enabling modern data integration in the cloud

BRK2279 – Real-world data movement and orchestration patterns using Azure Data Factory V2

 

Databricks

THR2182 – An Introduction to big data processing with Azure Databricks

BRK3313 – Azure Databricks for data engineers and data developers

BRK3204 – AI with big data: Data science at massive scale with Apache Spark in Azure Databricks

THR2186 – AI TechTalk: A gentle introduction to data science with Spark in Azure Databricks

BRK4024 – Azure Databricks: Deep dive into deployment, networking, and security

BRK3205 – AI for pros: Accelerating deep learning on Spark with Azure Databricks ML Runtime and GPU based clusters

 

IoT

THR1120 – Harnessing the Power of IoT

THR3150 – Develop IoT solutions with the Azure IoT developer toolbox

KB4469342 (OS Build 17763.168)

 

Method #1 Using WUSA Command

Step 1

1. Click on Start menu, click on Run.

2. In Run type as cmd.exe with elevated privileges, and type

wusa /uninstall /kb:{update ID}

————————–
Example

wusa /uninstall /kb:2841134

Step 2

1. Download update from the Microsoft Updates Catalog to any folder, like C:\temp1

2. Run cmd.exe with elevated privileges, and type

wusa /uninstall {full hotfix name}

————————–
Example

wusa /uninstall C:\Temp\Windows6.1-KB2841134.msu

 

Method #2 Using PKGMGR COMMAND

1. Download update from the Microsoft Updates Catalog to any folder, like C:\temp1

2. Run cmd.exe with elevated privileges.

3. Unpack update by using command prompt.

expand -f:*{update name}.msu {destination folder}

————————–
Example

To unpack update Windows6.1-KB2841134.msu to C:\temp2, which is stored in C:\temp1

expand -f:* C:\temp1\Windows6.1-KB2841134-x86.msu C:\temp2

 

4. Choose a folder for temporary processing, like C:\process1

5. Uninstall update with the following command

start /w pkgmgr /m:{full hotfix name}.cab /up /s:C:\process1

————————–
Example

start /w pkgmgr /m:C:\temp2\Windows6.1-KB2841134-x86.cab /up /s:C:\process1

 

Method #3 Using DISM.exe

Step 1

Export installed updates to text file

dism /online /get-packages /format:table > output.txt

Step 2

Package_for_KB4057247~31bf3856ad364e35~amd64~~16299.96.1.3

Step 3

Run command to uninstall

DISM.exe /Online /Remove-Package /PackageName:Package_for_KB4057247~31bf3856ad364e35~amd64~~16299.96.1.3 /quiet /norestart

 

Notes

https://www.catalog.update.microsoft.com/search.aspx