Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092, Important)

Today, for its April 2021 Patch Tuesday, Microsoft released an important security update for the Azure AD web sign-in feature in Windows and Windows Server. This vulnerability is known as CVE-2021-27092 and rated with CVSSv3.0 scores of 6.8/5.9. About Azure AD Web Sign-in Web Sign-in is a new way of signing into a Windows system. … Continue reading "Azure AD Web Sign-in Security Feature Bypass Vulnerability (CVE-2021-27092, Important)"

HOWTO: Get an overview of Azure AD Application Permissions

Applications in Azure AD offer people access to functionality that is integrated into your Azure AD tenant. The default behavior in Azure AD is that everyone can register applications and grant access to their data to applications. Microsoft now offers functionality to streamline the process of application management. When onboarding to this new functionality, admins … Continue reading "HOWTO: Get an overview of Azure AD Application Permissions"

Your Active Directory Pre-production environment: Restore from Backup or Deploy as Code?

Active Directory Domain Services act as the cornerstone of every on-premises Microsoft-oriented networking infrastructure. It is important to get things right when it comes to your Domain Controllers, user objects and access controls. An obvious solution to getting things right the first time is offering one or more pre-production environments to develop and test scripts, … Continue reading "Your Active Directory Pre-production environment: Restore from Backup or Deploy as Code?"

On-premises Identity-related updates and fixes for March 2021

Even though Microsoft’s Identity focus moves towards the cloud, they are not forgetting their on-premises roots. Windows Server 2016 and Windows Server 2019 still receive updates. These are the Identity-related updates and fixes we saw for March 2021:   Windows Server 2016 We observed the following update for Windows Server 2016: KB45000803 March 9, 2021 … Continue reading "On-premises Identity-related updates and fixes for March 2021"

What's New in Azure Active Directory for March 2021

Azure Active Directory is Microsoft's Identity Management-as-a-Service solution, offering seamless access, easy collaboration, efficiency in IT processes and improved security and compliance. In its Release Notes for Azure Active Directory, Microsoft communicated the following planned, new and changed functionality for Azure Active Directory for March 2021: What’s Planned Guidance on how to enable support for … Continue reading "What's New in Azure Active Directory for March 2021"

Azure Active Directory now offers a 99,99% uptime SLA

As announced by Nadim Abdo on December 18th, 2020, Azure Active Directory has an updated public service level agreement (SLA) to promise 99.99% uptime per April 1st, 2021.   April Fools' joke? I deliberately didn’t share this news on April 1st, 2021, to make sure that people didn’t see the blogpost as an April Fools’ … Continue reading "Azure Active Directory now offers a 99,99% uptime SLA"

Azure AD Connect version 1.6.4.0 fixes a bug in the previous release

Twelve days after the release of Azure AD Connect version 1.6.2.4, the first release in the 1.6 branch, Microsoft has released version 1.6.4.0, fixing a bug in the 1.6.2.4 release.   What’s fixed This release fixes a bug in version 1.6.2.4 where, after upgrade to that release, the Azure AD Connect Health feature was not … Continue reading "Azure AD Connect version 1.6.4.0 fixes a bug in the previous release"

Microsoft 365 Backup in terms of your organization’s exit scenario

Organizations flocking to Microsoft 365 services like Exchange Online, SharePoint Online and Teams have many reasons to make this transition.   Reasons to transition to the Microsoft cloud Whether it’s upgrading the IT real estate to the 21st century, the desire to eliminate technical debt, avoiding the upfront cost of a renewed on-premises implementation, or … Continue reading "Microsoft 365 Backup in terms of your organization’s exit scenario"

Knowledgebase: Azure AD Connect Health Agents are not registered on Azure AD Connect installations running version 1.6.2.4

Version 1.6.2.4 of Azure AD Connect that was released just last week seems to have an issue with the Azure AD Connect Health agent.   The situation You intend to synchronize objects from one or more on-premises Active Directory Domain Services implementations to an Azure AD tenant. You install Azure AD Connect version 1.6.2.4 to … Continue reading "Knowledgebase: Azure AD Connect Health Agents are not registered on Azure AD Connect installations running version 1.6.2.4"

Four things you should know about Selective Password Hash Synchronization

In Azure AD Connect version 1.6.2.4, Microsoft introduced the Selective Password Hash Synchronization feature. Formerly, Azure AD Connect would apply Password Hash Synchronization to all objects in scope for synchronization. In Azure AD Connect version 1.6.2.4, and up, a subset of users can be specifically included or excluded to having their password hashes synchronized to … Continue reading "Four things you should know about Selective Password Hash Synchronization"