On October 15th, 2025, Darryl Baker, senior solutions architect at Netwrix, and I presented a webinar titled 'Managing Active Directory Like It’s 2003 Leaves You Exposed in 2025' with the IT GRC Forum. Active Directory and Windows Server have evolved significantly, but many organizations still rely on outdated management practices. Since Microsoft enhanced replication and … Continue reading "The video of managing Active Directory like it's 2003 is now vailable on demand"
Category: Active Directory
Active Directory
Still managing Active Directory like it’s 2003? Darryl and I explain why it leaves you exposed in 2025
On October 15th, 2025, I will deliver a 75-minute webinar with IT GRC Forum together with Darryl Baker, Senior Solutions Architect at Netwrix. About the webinar Since Microsoft updated replication in Windows Server 2003, Active Directory has gained powerful security and management enhancements. Yet many organizations still manage it as if little has changed. … Continue reading "Still managing Active Directory like it’s 2003? Darryl and I explain why it leaves you exposed in 2025"
Recording of the Cayosoft webinar is now available
Manual processes, privilege sprawl, and outdated tools aren’t just slowing you down — they’re creating hidden risks in your hybrid AD infrastructure. In this expert-led webinar, you’ll learn from Craig Birch (Technical Evangelist and Principal Security Engineer at Cayosoft) and me how leading organizations are cutting user onboarding time by 75%, reducing privileged accounts by … Continue reading "Recording of the Cayosoft webinar is now available"
Stop the Chaos, Save time, Cut costs and strengthen Hybrid AD with Cayosoft
Manual processes, privilege sprawl, and outdated tools aren’t just slowing you down — they’re creating hidden risks in your hybrid AD infrastructure. In this expert-led webinar, you’ll learn from Craig Birch (Technical Evangelist and Principal Security Engineer at Cayosoft) and me how leading organizations are cutting user onboarding time by 75%, reducing privileged accounts by … Continue reading "Stop the Chaos, Save time, Cut costs and strengthen Hybrid AD with Cayosoft"
Get all your Microsoft Copilot data readiness questions answered by Netwrix and me in our upcoming panel discussion
The wonderful people at Netwrix have asked me to join their panel discussion on Microsoft Copilot readiness. In this online webinar we plan to discuss data discovery, data classification and access control with the help of Artificial Intelligence. About the webinar With Microsoft 365 services like SharePoint, Teams, and OneDrive generating and storing vast … Continue reading "Get all your Microsoft Copilot data readiness questions answered by Netwrix and me in our upcoming panel discussion"
Happy 25th Birthday, Active Directory!
Today, The DirTeam.com / ActiveDir.org Weblogs are celebrating the 25-year anniversary of Active Directory Domain Services as a released product. Windows 2000 Server The introduction of Active Directory to the world was part of the release of Windows 2000 Server on February 17, 2000.
From the field: You receive error ‘AADSTS9090561 The endpoint only accepts POST requests. Received a GET request’ when signing in
Sometimes, you hit error messages that are just too vague to troubleshoot. I like these kinds of situations. I’ve hit errors before and their origins were always interesting. Let’s see what’s happening today causing the error ‘AADSTS9090561 The endpoint only accepts POST requests. Received a GET request’ when signing in. The situation An organization is … Continue reading "From the field: You receive error ‘AADSTS9090561 The endpoint only accepts POST requests. Received a GET request’ when signing in"
VMware addresses ‘ESX Admins’ authentication bypass vulnerability (CVE-2024-37085) in ESXi 8.0 Update 3
Today, Broadcom issued a second update to VMSA-2024-003 for VMware ESXi, specifically to address the vulnerability CVE-2024-37085. This vulnerability, with a CVSSv3 base score of 6.8 out of 10 (Moderate), allowed an adversary with sufficient Active Directory permissions to gain full access to ESXi hosts. About the vulnerability For an adversary to abuse this … Continue reading "VMware addresses ‘ESX Admins’ authentication bypass vulnerability (CVE-2024-37085) in ESXi 8.0 Update 3"
On-premises Identity-related updates and fixes for July 2024
Even though Microsoft’s Identity focus moves towards the cloud, Windows Server 2016, Windows Server 2019 and Windows Server 2022 still receive updates to improve the experiences and security of Microsoft’s on-premises powerhouses. This is the list of Identity-related updates and fixes we saw for July 2024: Windows Server 2016 We observed the following update … Continue reading "On-premises Identity-related updates and fixes for July 2024"
Sympathy for the devil, empathy for the Identity professional
Working with Microsoft-focused identity admins, I noticed a couple of common themes with these fellow identity people that make them feel like they can't make any right decisions anymore, they got stuck somehow and feel miserable all the time… In their minds, a perfect storm is raging. Identity professionals in this state are experienced as … Continue reading "Sympathy for the devil, empathy for the Identity professional"