Azure Active Directory is Microsoft's Identity Management-as-a-Service solution, offering seamless access, easy collaboration, efficiency in IT processes and improved security and compliance. In its Release Notes for Azure Active Directory, Microsoft communicated the following planned, new and changed functionality for Azure Active Directory for February 2021: What’s Planned Email one-time passcode authentication on by default … Continue reading "What's New in Azure Active Directory for February 2021"
Azure AD Connect Sync’s uses three separate accounts. Its AD Connector account is an account that has several permissions that warrant a closer look at how the account can be abused. Of course, we’ll need command lines to hunt for any misuse. About the AD Connector account Since Azure AD Connect version 126.96.36.199, the use … Continue reading "HOWTO: Hunt for abuse of Azure AD Connect’s AD Connector account"
Last week, Veeam released Veeam Backup & Replication version 11. Let’s take a quick look at what’s new and what this means to Microsoft-oriented Identity-focused admins. What’s New In case you missed it, here’s what’s new in Veeam Backup & Replication version 11: Continuous Data Protection (CDP) For Tier-1 VMware vSphere-based workloads, Veeam now offers … Continue reading "What Veeam Backup & Replication v11 means for Microsoft-oriented Identity-focused admins"
One of the hard nuts to crack in Active Directory is meeting the requirements for the infrastructure features your organization’s business needs to operate reliably, securely and smooth. About Active Directory requirements Throughout Microsoft’s recent history, features have been introduced in all sorts of products that have certain Active Directory requirements. The perfect example is … Continue reading "HOWTO: Find out the capabilities Domain Controllers may offer your device"
Even though Microsoft’s Identity focus moves towards the cloud, they are not forgetting their on-premises roots. Windows Server 2016 and Windows Server 2019 still receive updates. These are the Identity-related updates and fixes we saw for February 2021: Windows Server 2016 We observed the following update for Windows Server 2016: KB4601318 February 9, 2021 The … Continue reading "On-premises Identity-related updates and fixes for February 2021"
Today, I received an e-mail from Nikola Pejková from Veeam congratulating me with being selected for the 2021 Veeam Vanguard Program by the Veeam Vanguard team. For me, it means I successfully renewed my previous five Veeam Vanguard Awards, dating back to 2016. The Veeam Vanguard program provided a different experience in 2020, but it … Continue reading "I’m a 2021 Veeam Vanguard"
If you are using an older version of Azure AD Connect, you might want to consider upgrading it. Yesterday, Microsoft published new information on changes to come. The Azure AD Connect product team is constantly making updates to Azure AD Connect Sync to ensure optimal security and performance of organizations’ synchronization processes. Therefore, Microsoft retires … Continue reading "Older versions of Azure AD Connect will be retired on February 29th, 2024"
Yesterday, VMware released an update that addresses three vulnerabilities in its ESXi, vCenter Server and Cloud Foundation products: A remote code execution vulnerability in the vSphere Client (CVE-2021-21972) An SSRF vulnerability in the vSphere Client (CVE-2021-21973) An ESXi OpenSLP heap-overflow vulnerability (CVE-2021-21974) About the vulnerabilities Remote code execution vulnerability in the vSphere Client (CVE-2021-21972) The … Continue reading "VMSA-2021-0002 updates for VMware ESXi and vCenter address multiple security vulnerabilities (CVE-2021-21972, CVE-2021-21973, CVE-2021-21974)"
Microsoft’s Ignite 2021 Spring event kicks off in one week. For 2020, Ignite is organized differently to align with the new reality. Microsoft has announced that they will organize virtual events only until July 2021. Instead of an in-person event, a virtual Ignite event is organized from Tuesday March 2nd to Thursday March 4th, 2021. … Continue reading "Identity-related sessions at Microsoft Ignite 2021 Spring Edition"
One of the issues you might encounter, when you misconfigure the delegated permissions for Azure AD Connect’s Active Directory connector account is events in your Domain Controllers’ event viewers every hour with event ID 1699. The situation You are using Azure AD Connect with Password Hash Synchronization as either the sign-in method to Azure AD … Continue reading "KnowledgeBase: You experience EventID 1699 on Domain Controllers targeted by Azure AD Connect"