There are many great Active Directory Monitoring solutions, however, there are not many great Domain Controller Monitoring solutions. What’s the difference? Not every Active Directory Monitoring solution is capable of monitoring what’s going on on the Domain Controllers. Active Directory Monitoring solutions that are part of bigger monitoring solutions even go as far as treating … Continue reading "Domain Controller Monitoring: Why, What, How?"
On October 4, 2022, Raymond and I are presenting at the Detron Headquarters in Veenendaal on adequately securing Active Directory from 6:30PM to 9PM. I presented on one of their Knowledge session events in 2017, and earlier this year, Xander Bikbergen contacted me to present on a topic close to his experience: the Active Directory … Continue reading "I'm co-presenting an in-person Knowledge session with Detron on adequately securing Active Directory"
Running into Coert Bosker at several events this year, Raymond and I started talking about presenting a session at AppManagEvent. This year, we’re back at this awesome event in Utrecht! About AppManagEvent AppManagEvent is the annual industry event around application management. The event provides its visitors a status update and a future update on the … Continue reading "I’m co-presenting at AppManagEvent 2022"
I’m proud to announce that I will be co-presenting a webinar with Netwrix’ Anthony Moillic and ARMA International on Thursday October 6, 2022 at 1PM CDT (UTC-5). About the webinar Active Directory controls access to critical systems and data for organizations around the world, but it is not always managed securely. That makes it a … Continue reading "I’m co-presenting a webinar with ARMA International and Netwrix"
In a world with both Active Directory and Azure AD, organizations have to make choices. It seems they can either stick with their proven Active Directory, or jump ahead to Azure AD. Luckily, there’s a third option. Using Azure AD Connect, organizations can have the best of the Active Directory and Azure AD worlds. The … Continue reading "Why Everyone’s talking about Hybrid Cloud Trust"
When working with the Azure AD Password Protection feature, you might want to take advantage of the event log management features on your Domain Controllers to make sure you get the right amount of events for password set and password failure audit events. About Azure AD Password Protection Azure AD Password Protection is an Azure … Continue reading "HOWTO Extend the availability of Azure AD Password Protection Reporting Information"
On Wednesday September 7th, 2022, I’m co-organizing KNVI’s Knowledge BBQ Dutch at ZiPPERZ in Rotterdam. Fellow speakers Raymond Comvalius and Erwin Derksen complete the line-up for this Microsoft-inspired event. About KNVI The Dutch Professional Association of Information and IT Professionals (KNVI) is an independent platform for sharing professional knowledge and expanding the personal networks of … Continue reading "I’m co-organizing the KNVI Knowledge BBQ in Rotterdam"
As Active Directory, its Domain Controllers and their inner workings were originally designed in the late 90s, some of the technologies and processes can be somewhat incompatible with technologies and ways of work that were introduced since. I haven’t stumbled upon physical Domain Controllers in a while, so I guess I can conclude that Virtual … Continue reading "Eight Tips and Tricks for Backing up and Restoring virtual Domain Controllers with Altaro VM Backup v8"
This week, on its Patch Tuesday for August 2022, Microsoft released a patch that addresses a critical vulnerability (CVE-2022-34691) in Active Directory Domain Services (AD DS). About the vulnerability An Elevation of Privilege (EoP) vulnerability exists in Active Directory Domain Services (AD DS). The vulnerability can be exploited over the network with low complexity … Continue reading "An Elevation of Privilege vulnerability in Active Directory affects Certification Authorities (Critical, CVE-2022-34691)"
Microsoft offers Hybrid Cloud Trust as a way to offer people with synchronized Work or School accounts on Azure AD-joined device seamless single sign-on access to Active Directory-integrated resources. When they sign in with Windows Hello for Business (WHfB), the Active Directory-integrated functionality doesn’t prompt for username and password. How Hybrid Cloud Trust works Under … Continue reading "TODO: Periodically reset the password for the KRBTGT_AzureAD account when using Hybrid Cloud Trust"