Graph API PowerShell Tips and Tricks, Part 2: Requirements

The AzureAD, MSOnline and AzureADPreview PowerShell modules are scheduled for deprecation. The schedule has changed a couple of times. To be prepared, admins should get going with the new Graph API SDK. However, the Graph API SDK works differently. There's a learning curve that has proven steep. Many admins who have walked the path before … Continue reading "Graph API PowerShell Tips and Tricks, Part 2: Requirements"

On-premises Identity-related updates and fixes for January 2023

Even though Microsoft’s Identity focus moves towards the cloud, Windows Server 2016, Windows Server 2019 and Windows Server 2022 still receive updates to improve the experiences and security of Microsoft’s on-premises powerhouses. This is the list of Identity-related updates and fixes we saw for January 2023:   Windows Server 2016 We observed the following update … Continue reading "On-premises Identity-related updates and fixes for January 2023"

Pictures from IT Community User Group Križevci, January 2023

Last month I presented at the IT Community User Group in Križevci, Croatia. About Križevci and its IT Community User Group Križevci is a small city located Northeast of Zagreb. If you're going by car, you need less than an hour to get there (of course, if your start your ride in Zagreb 😁). My … Continue reading "Pictures from IT Community User Group Križevci, January 2023"

What's New in Microsoft Defender for Identity in January 2023

Microsoft Defender for Identity helps Active Directory admins defend against advanced persistent threats (APTs) targeting their Active Directory Domain Services infrastructures. It is a cloud-based service, where agents on Domain Controllers provide signals to Microsoft's Machine Learning (ML) algorithms to detect and report on attacks. Its dashboard allows Active Directory admins to investigate and remediate … Continue reading "What's New in Microsoft Defender for Identity in January 2023"

What's New in Azure Active Directory for January 2023

Azure Active Directory is Microsoft's Identity Management-as-a-Service solution, offering seamless access, easy collaboration, efficiency in IT processes and improved security and compliance. In its Release Notes for Azure Active Directory, Microsoft communicated the following planned, new and changed functionality for Azure Active Directory for January 2023:   What's Deprecated Apple Watch companion app removed from Authenticator … Continue reading "What's New in Azure Active Directory for January 2023"

Microsoft Graph PowerShell Tips and Tricks, Part 1: Introduction

The AzureAD, MSOnline and AzureADPreview PowerShell modules are scheduled for deprecation. The schedule has changed a couple of times. To be prepared, admins should get going with the new Microsoft Graph PowerShell SDK module. However, the Microsoft Graph PowerShell SDK works differently. There's a learning curve that has proven steep. Many admins who have walked … Continue reading "Microsoft Graph PowerShell Tips and Tricks, Part 1: Introduction"

Best Active Directory Monitoring tool

Today, Active Directory is still the cornerstone of most networking infrastructure environments. In Hybrid Identity environments, where on-premises Active Directory is coupled with Azure AD, the reliance on Active Directory is enormous. In these environments, the answers to the question ‘What if something would happen to Active Directory?’ range from ‘Everything goes down’ to ‘Game … Continue reading "Best Active Directory Monitoring tool"

You're invited to the IT-University Masterclass – Adequately Securing Active Directory

On February 6th, 2023, I will be presenting a masterclass, together with Raymond Comvalius for IT-University.nl. Dutch Raymond and I will be presenting on a topic that is close to my heart: Active Directory. Active Directory has captivated the hearts of adversaries. Some ransomware gangs just simply lose interest want the device of a potential victim … Continue reading "You're invited to the IT-University Masterclass – Adequately Securing Active Directory"

Existing Azure MFA Server deployments stop working starting September 30, 2024

Microsoft announced the final stage of deprecating Azure Multi-Factor Authentication (MFA) Server.   Deprecating Azure MFA Server Deprecating a crucial element in crucial processes for organizations is not something that Microsoft takes lightly: Since MFA Server 8, released on April 10, 2018. MFA registrations for the Authenticator app flow through the Azure MFA infrastructure instead of … Continue reading "Existing Azure MFA Server deployments stop working starting September 30, 2024"

The Azure ATP Portal is being decommissioned in February 2023

Microsoft Defender for Identity helps Active Directory admins defend against advanced persistent threats (APTs) targeting their Active Directory Domain Services infrastructures. Microsoft Defender for Identity was formerly known as Azure Advanced Threat Protection (Azure ATP). Admins at many organizations that onboarded to the Defender for Identity functionality still manage it through the Azure ATP Portal. … Continue reading "The Azure ATP Portal is being decommissioned in February 2023"