Windows Server 2012 is a major leap forward for Server Core installations of Windows Server. Not only are Full installations of Windows Server convertible back and forth to Server Core installations without reinstallation, a whole slew of new Server Roles have become available for installation on the mean, clean Server Core installations. Active Directory Domain … Continue reading "Active Directory Services on Server Core installations"
Author: Sander Berkouwer
Sander Berkouwer is the author of the Active Directory Administration Cookbook, speaker and blogger at DirTeam.com and ServerCore.net. He is awarded Microsoft MVP, Veeam Vanguard and VMware vExpert.
Since 2009, Microsoft has awarded Sander with the Most Valuable Professional (MVP) award. Since 2016, Veeam has awarded Sander with the Veeam Vanguard award.
Identity and Authentication in the cloud: Office 2013 and Office 365 (Poster)
Last week, Microsoft released a poster, detailing identity and authentication for Office 2013 and Office 365. It details the scenario where you would provision accounts in Microsoft's Online Services environment (Scenario 1) and also details the scenario where you would federate your on-premises Active Directory infrastructure with Microsoft's Online Services environment (Scenario 2)
The DirTeam.com/ActiveDir.org Weblogs no longer offer SSL v2.0
As you might be aware, the DirTeam.com/ActiveDir.org Weblogs offers the ability to encrypt all http traffic to and from the website using Secure Sockets Layer (SSL) since December 2010. To enable this, you only need to direct your traffic to https://blogs.dirteam.com instead of https://dirteam.com. The functionality also includes feeds and (when you’re a blogger with … Continue reading "The DirTeam.com/ActiveDir.org Weblogs no longer offer SSL v2.0"
Best Practices for Securing Active Directory
Today, Microsoft has released a document, detailing the Best Practices for Securing Active Directory Domain Services. The document contains 22 best practice recommendations to assist organizations in enhancing the security of their Active Directory installations. By implementing these recommendations, organizations will be able to identify and prioritize security activities, protect key segments of their organization’s … Continue reading "Best Practices for Securing Active Directory"
Applicability of Managed Service Accounts (MSAs) and group Managed Service Accounts (gMSAs)
Recently, one of my readers approached me with some questions on Managed Service Accounts (MSAs). From our discussion, I realized a lot of people may be unclear about the applicability of Managed Service Accounts (MSAs) and group Managed Service Accounts (gMSAs). So, this blogpost features a comprehensive table, showing the applicability of Managed Service Accounts … Continue reading "Applicability of Managed Service Accounts (MSAs) and group Managed Service Accounts (gMSAs)"
Pictures of the NGN Tablet Day
Yesterday, the Dutch Networking User Group organized the Tablet Day at the Reehorst in Ede, the Netherlands. Dave and I presented a 45-minute session on device management through ActiveSync. The whole day was packed with sessions from many speakers and it was a great success with good drinks and a dinner afterwards. Some people took … Continue reading "Pictures of the NGN Tablet Day"
I will be speaking at the UK VMUG Meeting in London
I just received confirmation on speaking at the UK Virtual Machine User Group (VMUG) Meeting in the Hilton Doubletree hotel in London on Tuesday May 21, 2013. I will be delivering my session on virtualization-safe(r) Active Directory and Domain Controller Cloning. The same session I have been delivering for the past year at numerous events, … Continue reading "I will be speaking at the UK VMUG Meeting in London"
KnowledgeBase: You cannot use redirusr.exe and redircmp.exe in the Windows Server 2008 DFL on Windows Server 2008
In the past years, I’ve found many systems and many errors. Today, I’m sharing behavior in Microsoft Windows Server that had me frown and chuckle. A bug in Active Directory code I’ve been grateful for, since it illustrates the nature of software. Note: This behavior has not been publicized in the Microsoft KnowledgeBase (yet). In … Continue reading "KnowledgeBase: You cannot use redirusr.exe and redircmp.exe in the Windows Server 2008 DFL on Windows Server 2008"
MS13-032 Vulnerability in Active Directory Could Allow Remote Code Execution (Important)
It’s not often, that Active Directory Domain Controllers get security updates. The Active Directory Domain Services Server Role is one of the most robustly written code, as I pointed out in an earlier blogpost on Statistics on Active Directory-related Security Bulletins. Since 2001, Microsoft has issued 18 Security Bulletins with patches to address issues in … Continue reading "MS13-032 Vulnerability in Active Directory Could Allow Remote Code Execution (Important)"
Meet Azure Active Directory: Your Cloud-based Identity Service
Today, Microsoft made Azure Active Directory generally available (GA). This means it is ready for production use. Azure Active Directory enables organizations to provision their users with a single identity that can be used to access applications that are run on Windows Azure, run by 3rd party cloud-based vendors and/or within their own datacenters.