Skip to Content

About: Sander Berkouwer

Sander Berkouwer is CTO at SCCT, a Dutch Microsoft Partner. He is the author of the Active Directory Administration Cookbook, speaker and blogger at and He is awarded Microsoft MVP, Veeam Vanguard and VMware vExpert. Since 2009, Microsoft has awarded Sander with the Most Valuable Professional (MVP) award. Since 2016, Veeam has awarded Sander with the Veeam Vanguard award.

Recent Posts by Sander Berkouwer:

HOWTO: Handle Windows Update on non-domain-joined Web Application Proxies

Written on September 17, 2019 at 9:27 PM, by

Most Microsoft-based Hybrid Identity implementations use Active Directory Federation Services (AD FS) Servers, Web Application Proxies and Azure AD Connect installations. In this series, labeled Hardening Hybrid Identity, we’re looking at hardening these implementations, using recommended practices. In this part of the series, we’ll look at best practices to handle Windows activation on non-domain-joined Web […]

Azure AD Connect version 1.4 introduces refined AD FS Management Capabilities

Written on September 16, 2019 at 1:17 PM, by

It’s time for a new version of Azure AD Connect to incorporate Microsoft’s lessons learned and distribute the fixes Microsoft made to the larger public. Last Friday, Microsoft released the first version in the 1.4 branch of Azure AD Connect: v1.4.x.0 Azure AD Connect is Microsoft’s free Hybrid Identity bridge product to synchronize objects and […]

Pictures of the NLVMUG BBQ

Written on September 13, 2019 at 11:41 AM, by

On Monday, I visited the BBQ organized by the Dutch chapter of the VMware User Group (NLVMUG). The NLVMUG BBQ was held at Beach Club Down Under in Nieuwegein. This year’s NLVMUG BBQ is conveniently scheduled after VMworld US (just two weeks ago) and well before VMworld Europe. Naturally, both the VMworld Europe event, and […]

Domain Controller Cloning on VMware vSphere

Written on September 12, 2019 at 8:24 PM, by

After detailing Active Directory Virtualization Safeguards with VM-GenerationID in part 5 of this series on Virtualizing Domain Controllers on vSphere, it’s time to talk about the second Active Directory Domain Services feature that is enabled through the VM-GenerationID technology: Domain Controller cloning.   About Domain Controller cloning Microsoft recommends not re-using Domain Controllers for other […]

On-premises Microsoft Identity-related updates and fixes for August 2019

Written on September 11, 2019 at 1:42 PM, by

Even though Microsoft’s Identity focus moves towards the cloud, they are not forgetting their on-premises roots. Windows Server 2016 and Windows Server 2019 still receive updates. These are the updates and fixes we saw for August 2019:                      Windows Server 2016 We observed the following updates for Windows Server 2016: KB4512495 August 17, 2019 The […]