Azure AD Connect version 2.0.3.0 is here

It’s time for a new version of Azure AD Connect to incorporate Microsoft’s lessons learned and distribute the fixes Microsoft made to the larger public. Yesterday, Microsoft released the first version in the 1.6 branch of Azure AD Connect: v2.0.3.0 Azure AD Connect is Microsoft’s free Hybrid Identity bridge product to synchronize objects and their … Continue reading "Azure AD Connect version 2.0.3.0 is here"

A Recap of Identity-related Announcements from Microsoft Inspire 2021

Another Microsoft Inspire event has come to a close. Microsoft organized Inspire 2021 as a free digital event between Wednesday July 14th 5 PM and Friday July 16th 5 PM CEST. Microsoft Inspire is Microsoft’s annual event where it kicks off its fiscal year with its partner community. Inspire is Microsoft’s way to explain what’s … Continue reading "A Recap of Identity-related Announcements from Microsoft Inspire 2021"

VMSA-2021-0014 updates for VMware ESXi and vCenter address two security vulnerabilities (CVE-2021-21994, CVE-2021-21995)

Today, VMware released an update that addresses an SFCB improper authentication vulnerability (CVE-2021-21994) and an OpenSLP denial-of-service vulnerability (CVE-2021-21995). These two vulnerabilities can be used to compromise virtual Domain Controllers running on ESXi. Note: The vulnerabilities exist in VMware Cloud Foundation, too. The two vulnerabilities were responsibly disclosed to VMware.   About the vulnerabilities SFCB … Continue reading "VMSA-2021-0014 updates for VMware ESXi and vCenter address two security vulnerabilities (CVE-2021-21994, CVE-2021-21995)"

The July 2021 Patch Tuesday addresses twelve vulnerabilities for Domain Controllers running as DNS Servers

When looking at the July 2021 Patch Tuesday today, I noticed three updates that specifically address vulnerabilities in the DNS snap-in and nine vulnerabilities in DNS Server. These vulnerabilities are specific to Domain Controllers running DNS Server (in the default configuration), so this sparked my interest in these updates. Three DNS Snap-in vulnerabilities There are … Continue reading "The July 2021 Patch Tuesday addresses twelve vulnerabilities for Domain Controllers running as DNS Servers"

What's New in Azure Active Directory for June 2021

Azure Active Directory is Microsoft's Identity Management-as-a-Service solution, offering seamless access, easy collaboration, efficiency in IT processes and improved security and compliance. In its Release Notes for Azure Active Directory, Microsoft communicated the following planned, new and changed functionality for Azure Active Directory for June 2021:   What’s Planned Context panes to display risk details … Continue reading "What's New in Azure Active Directory for June 2021"

Identity-related sessions at Microsoft Inspire 2021

Microsoft Inspire is Microsoft’s annual event where it kicks off its fiscal year with its partner community. Inspire is Microsoft’s way to explain what’s coming in the year ahead and work together to find shared solutions for customers. As all of Microsoft’s events will have a focus on online events until July 2021, Microsoft Inspire … Continue reading "Identity-related sessions at Microsoft Inspire 2021"

On-premises Identity-related updates and fixes for June 2021

Even though Microsoft’s Identity focus moves towards the cloud, they are not forgetting their on-premises roots. Windows Server 2016 and Windows Server 2019 still receive updates. These are the Identity-related updates and fixes we saw for June 2021: Windows Server 2016 We observed the following updates for Windows Server 2016: KB5003638 June 8, 2021 The … Continue reading "On-premises Identity-related updates and fixes for June 2021"

I’m a 2021-2022 Microsoft MVP

Today, I received a localized e-mail from the Microsoft Most Valuable Professional (MVP) Award team: In Dutch, it reads: Beste Sander Berkouwer, Nogmaals presenteren we u met genoegen de 2021-2022 Microsoft Most Valuable Professional (MVP) Award als erkenning van uw buitengewone leiderschap in technische community’s. We waarderen uw uitmuntende bijdragen in de volgende technische community’s … Continue reading "I’m a 2021-2022 Microsoft MVP"

TODO: Disable the Print Spooler service on Domain Controllers

Today, the news reached me that CVE-2021-1675 is weaponized to compromise Domain Controllers. This is actually already happening in the real world, leading to a ‘zero day’ vulnerability event. Luckily, the vulnerability can be easily thwarted with a simple configuration change on Domain Controllers; disabling the Print Spooler service. Not a big change, but there … Continue reading "TODO: Disable the Print Spooler service on Domain Controllers"