Skip to Content

About: Sander Berkouwer

Sander Berkouwer is a Dutch IT Professional with over ten years of experience with projects in large IT environments. He is a contributing blogger at the / Weblogs ( and the founder and owner of ServerCore.Net. Since 2009, Microsoft has awarded Sander with the Most Valuable Professional (MVP) award and since 2011 he works part-time as an IT Professionals Evangelist for Microsoft Netherlands.

Recent Posts by Sander Berkouwer:

Azure AD Connect 1.1.561.0 finalizes Automatic Upgrade scenario changes and the move to mS-DS-ConsistencyGuid

Written on July 24, 2017 at 2:30 PM, by

Yesterday, Microsoft released version 1,1.561.0 of Azure AD Connect, its free Hybrid Identity bridge product to synchronize objects and their attributes from on-premises Active Directory Domain Services (AD DS) environments to Azure Active Directory. This version is hot on the heels of version 1.1.557.0, because it features some fixes for organization who recently made the […]

Top Five reasons why Identity Admins should look at Windows Server Insider Preview Build 16237

Written on July 14, 2017 at 3:24 PM, by

Yesterday, Microsoft made Windows Server Insider Preview Build 16237 available to the Windows Insiders and Windows Insiders for Business programs. This is the first preview build of the Redstone 3 (RS3) release of Windows Server vNext. I’ve looked at this release, and as an Identity Admin, I feel this build has a lot to offer. […]

Security Thoughts: Vulnerability in NTLM Credentials Forwarding with LDAPS could allow Elevation of Privilege (CVE-2017-8563, Important)

Written on July 13, 2017 at 11:07 AM, by

Last Tuesday, during Microsoft’s July 2017 Patch Tuesday, Microsoft released a security update for all supported Operating Systems to address an elevation of privilege vulnerability that exists when Kerberos falls back to NT LAN Manager (NTLM) Authentication Protocol as the default authentication protocol.   About the vulnerability In a remote attack scenario, an attacker could […]

Azure AD Connect: objectGUID vs. mS-DS-ConsistencyGuid, Part 1

Written on July 12, 2017 at 4:36 PM, by

The Azure AD Connect Team has decided to move Azure AD Connect’s default source anchor attribute in on-premises Active Directory Domain Services (AD DS) environments from objectGUID to mS-DS-ConsistencyGuid for user objects in Azure AD Connect version 1.1.553.0, and up. When you’ve been using Azure AD Connect to synchronize objects between your on-premises Active Directory […]

Azure AD Connect 1.1.557.0 is good news for highly-regulated and highly-secure organizations

Written on July 6, 2017 at 5:56 PM, by

Microsoft released version 1.1.557.0 yesterday, hot on the heels of last week’s important 1.1.553.0 release that for the first time fixed a critical security issue in Azure AD Connect. With new features for Azure Government cloud and Azure Germany available in this release, and PTA not automatically enabling PHS, this release is particularly appealing to […]