Skip to Content

Join me for the Amsterdam Microsoft Tech Summit

Written on March 20, 2017 at 7:58 PM, by

As part of a global series of events, on Thursday March 23 and Friday March 24, Microsofts hosts the Tech Summit in the Amsterdam RAI. Since, from a global point of view, this event takes place in my backyard, I’ll be there as an Ask the Expert, together with many of my Dutch MVP peers. […]

Exchange Server 2007 (almost) EOL!

Written on March 20, 2017 at 12:19 PM, by

Just a quick reminder that Exchange Server 2007 will have no support after April 11th 2017. Although every install will continue without any issue after this date, it is a risk continuing the use of this product. Security fixes won’t come available, but also little things like timezone/daylight savings changes aren’t updated which could have […]

Branding your Hybrid Identity Solution, Part 6: The Azure Multi-Factor Authentication Server User Portal

Written on March 17, 2017 at 7:31 AM, by

To avoid service desk calls, you can implement Azure Multi-Factor Authentication Server’s User Portal. Colleagues enrolled in Azure Multi-Factor Authentication can access this portal to change their phone number(s), change their verification method and/or enroll and/or remove devices with the Azure Authenticator app. Even if they screw up their verification options badly, they can still […]

Join me for an Active Directory Backup and Recovery webinar, in cooperation with Veeam

Written on March 16, 2017 at 9:27 PM, by

This year, as a Veeam Vanguard, I’m hosting a series of three Active Directory Domain Services webinars, together with Timothy Dewin and hosted by Veeam. With the basics and most of the virtualization gotcha;s covered, on March 21, it’s time for the topic everyone has been waiting for: Backup and Recovery. It’s the last webinar […]

Branding your Hybrid Identity Solution, Part 5: Azure Multi-Factor Authentication Server’s AD FS Adapter implementation

Written on March 16, 2017 at 11:13 AM, by

Once you’ve branded the Active Directory Federation Services (AD FS) and Azure Active Directory pages, you might want to apply your corporate branding to the Active Directory Federation Services Adapter pertaining to your on-premises Azure Multi-Factor Authentication (MFA) Server. For AD FS running on Windows Server 2012 R2, this means that the Azure Multi-Factor Authentication […]

Important Update for Active Directory Federation Services (MS17-019, KB4010320, CVE-2017-0043)

Written on March 14, 2017 at 11:43 PM, by

Today, for its March 2017 Patch Tuesday, Microsoft released an important security update for Active Directory Federation Services (AD FS). The security update addresses a vulnerability that could allow information disclosure if an attacker sends a specially crafted request to an ADFS server, allowing the attacker to read sensitive information about the target system..   […]

Critical Flaw in SMB1 could allow remote code execution on Active Directory Domain Controllers (MS17-010, KB4013389)

Written on March 14, 2017 at 11:27 PM, by

Today, for its March 2017 Patch Tuesday, Microsoft released a security update for supported versions of Windows Server offering File Sharing services using the Server Message Block (SMB) version 1.0 protocol. The security update addresses the vulnerabilities by correcting how SMBv1 handles specially crafted requests.   About the vulnerabilities The vulnerabilities that are fixed with […]

Branding your Hybrid Identity Solution, Part 4: Active Directory Federation Services

Written on March 14, 2017 at 9:26 PM, by

Active Directory Federation Services (AD FS) plays a huge part in your Hybrid Identity implementation. For colleagues using their domain credentials on domain-joined devices located on-premises , through Kerberos, they gain Single Sign-On (SSO) access to web apps your organization uses. For roaming colleagues, AD FS offers Single Sign-On on a per browser session basis, […]

Branding your Hybrid Identity Solution, Part 3: Azure Active Directory

Written on March 13, 2017 at 7:38 AM, by

As mentioned in the Introduction post to this series, we’ll try to achieve a unified and consistent experience for end-users when using our Hybrid Identity implementation. For many end-users the Azure Active Directory Logon Pages are their first entry into their Azure Active Directory-integrated applications, services and systems, when they’re working from home, on the […]

Branding your Hybrid Identity Solution, Part 2: Recommendations

Written on March 12, 2017 at 9:04 AM, by

Before we go applying changes to our Hybrid Identity implementation, I feel it’s a good time to discuss some of my recommendations for branding. These below five recommendations flow from my own personal experience branding the components of Hybrid Identity implementations.   Built-in branding vs. Full customization For Active Directory Federation Services (AD FS), you […]