Domain Controllers running the latest updates may encounter LSASS memory leaks and unexpected restarts, unless…

After installing the most recent Updates on their Domain Controllers, some readers have reported in the comments that they experienced that the Local Security Authority Subsystem Service (LSASS) process on their Domain Controllers continually increases memory usage making their Domain Controllers become unresponsive and even automatically restart…   The cause Many Active Directory admins experienced issues … Continue reading "Domain Controllers running the latest updates may encounter LSASS memory leaks and unexpected restarts, unless…"

I’m speaking at the European SharePoint, Office 365 and Azure Conference (ESPC22)

I’m happy to announce that I am returning as a speaker for the European SharePoint, Office 365 and Azure Conference (ESPC) 2022 from November 28th to December 1st, 2022.   About ESPC22 The European SharePoint, Office 365 & Azure Conference (ESPC) provides Microsoft 365 and Azure professionals with the expert content and connections to help them achieve … Continue reading "I’m speaking at the European SharePoint, Office 365 and Azure Conference (ESPC22)"

HOWTO: Install the most recent Updates on your Domain Controllers

To address a known issue that affects Windows Servers that have the Domain Controller role, Microsoft has released an out-of-band update. After installing the November 2022 cumulative updates on Domain Controllers, you might experience Kerberos authentication issues due to the way Microsoft addressed CVE-2022-37966.   Microsoft Windows 2022 Regardless of having installed the November 8, 2022 update for … Continue reading "HOWTO: Install the most recent Updates on your Domain Controllers"

Domain Controller Monitoring Checklist

Last month, I provided some context for how I feel about Active Directory Monitoring and Domain Controller Monitoring. I wrote that monitoring solutions should not treat Domain Controllers as mere ‘application servers’ or ‘nodes’, as many Active Directory Monitoring solutions, like SolarWinds’ do. However, organizations may have varying requirements towards potential Domain Controller Monitoring solutions. … Continue reading "Domain Controller Monitoring Checklist"

Veeam Backup & Replication v11a supports VMware vSphere 8.0

Hot on the heels of VMware Explore Europe, Veeam announced its support for VMware vSphere 8.0.   About VMware vSphere 8.0 vSphere is VMware’s advanced server virtualization solution, consisting of ESXi (the core virtualization product that is installed on host machines – a type 1 hypervisor) and vCenter Server (the solution to manage multiple ESXi hosts … Continue reading "Veeam Backup & Replication v11a supports VMware vSphere 8.0"

Azure AD Connect v2.1.20.0 offers to synchronize to Azure AD’s employeeLeaveDateTime attribute

With Microsoft introducing the Lifecycle Workflows functionality Public Preview at its Microsoft Ignite event last month, some things are definitely changing… Azure AD is now poised to become the leading identity management plane and Active Directory to become a mere authentication store.However, to make that dream work, Azure AD Connect needs to offer additional functionality … Continue reading "Azure AD Connect v2.1.20.0 offers to synchronize to Azure AD’s employeeLeaveDateTime attribute"

KnowledgeBase: You experience errors with Event ID 14 and source Kerberos-Key-Distribution-Center on Domain Controllers

To continually increase the information security of on-premises Domain Controllers, Microsoft provides new functionality to Windows Server and Active Directory. Sometimes, the new security measures affect the efforts of admins to get their Active Directory environments to a safer state, ahead of the curve. In this knowledgebase article, I’ll discuss such a measure.   The … Continue reading "KnowledgeBase: You experience errors with Event ID 14 and source Kerberos-Key-Distribution-Center on Domain Controllers"

A Critical Vulnerability in Veeam Backup for Google Cloud was automatically addressed (CVE-2022-43549)

Last week, Veeam identified a critical vulnerability in a component of its Backup for Google Cloud solution, that allows attackers to bypass authentication mechanisms and execute arbitrary code. About Veeam Backup for Google Veeam Backup for Google Cloud is a solution offered by Veeam to backup and restore Google Computer Engine instances, their persistent disks, … Continue reading "A Critical Vulnerability in Veeam Backup for Google Cloud was automatically addressed (CVE-2022-43549)"

KnowledgeBase: You experience errors with Event ID 42 and source Kdcsvc on Domain Controllers

To continually increase the information security of on-premises Domain Controllers, Microsoft provides new functionality to Windows Server and Active Directory. Sometimes, the new security measures affect backward compatibility. In this knowledgebase article, I’ll discuss such a measure. The situation You run Active Directory with Domain Controllers on one or more of the below Windows Server … Continue reading "KnowledgeBase: You experience errors with Event ID 42 and source Kdcsvc on Domain Controllers"

Spend some Time on Properly Configuring and Monitoring your Domain Controllers this Patch Tuesday

This Patch Tuesday, Microsoft addressed 68 vulnerabilities. Of these vulnerabilities, three vulnerabilities are specific to Windows Server installations running as Domain Controllers. These updates are not of the ‘update and forget’ type of updates, but require some more work. So, spend some time on properly configuring your Domain Controllers, this Patch Tuesday. The three vulnerabilities … Continue reading "Spend some Time on Properly Configuring and Monitoring your Domain Controllers this Patch Tuesday"