While installing updates is one of the basic information security measures, many organizations hold off on installing updates for Windows Server within 48 hours. This month, we saw another reason why it’s a smart idea to test updates in pre-production environments before deploying them to production domain controllers. After installing the November 2021 cumulative and/or … Continue reading "You may encounter authentication issues after installing the November 2021 Cumulative updates"
Category: Systems Administration
Systems Administration
Support for vSphere 6.5 and vSphere 6.7 ends in one year
On October 18th, 2016, VMware announced vSphere 6.5 focusing on a simplified experience and improving security features. Today, we're seeing one year of support left for this great product that has served so many organizations well. vSphere 6.5 To me, vSphere 6.5 was a milestone release. Sure, it didn't have the appeal as other … Continue reading "Support for vSphere 6.5 and vSphere 6.7 ends in one year"
Three Active Directory vulnerabilities were addressed in the October 2021 Updates
When looking at the October 12th, 2021 updates today, I noticed three updates that specifically address vulnerabilities in Active Directory Domain Services and DNS. These vulnerabilities affect domain controllers at the heart of many networking infrastructure environments. About the vulnerabilities Three vulnerabilities were addressed: CVE-2021-40460 RPC Runtime Security Feature Bypass Vulnerability CVE-2021-40460 is a vulnerability … Continue reading "Three Active Directory vulnerabilities were addressed in the October 2021 Updates"
Three vulnerabilities in AD FS were addressed at this month's Patch Tuesday
When looking at the October 2021 Patch Tuesday today, I noticed three updates that specifically address vulnerabilities in Active Directory Federation Services (AD FS). About the vulnerabilities Three vulnerabilities were addressed today: CVE-20221-40456 AD FS Security Feature Bypass Vulnerability CVE-2021-40456 is a vulnerability that could allow an attacker to bypass BannedIPList entries for WS-Trust workflows … Continue reading "Three vulnerabilities in AD FS were addressed at this month's Patch Tuesday"
Admins that have upgraded to Azure AD Connect v2 are at risk of running out of date and insecure installations
Admins that have bit the bullet on Azure AD Connect v2 are now eating the sour grapes of that decision, as Microsoft doesn't offer Automatic Upgrades on any of the v2 builds released to date. About Azure AD Connect v2 Azure AD Connect is Microsoft’s free Hybrid Identity bridge product to synchronize objects and their … Continue reading "Admins that have upgraded to Azure AD Connect v2 are at risk of running out of date and insecure installations"
Hornetsecurity’s 365 Threat Monitor: Get rid of unwanted and potentially dangerous messages
Any messaging administrator will tell you that it’s hard to fight against spam. As we read about most cybersecurity incidents starting with (spear)phishing attacks, it also becomes increasingly clear messaging administrators in small and medium-sized business need to work harder or smarter to protect their colleagues. Messaging in the modern age Many organizations started their … Continue reading "Hornetsecurity’s 365 Threat Monitor: Get rid of unwanted and potentially dangerous messages"
Azure AD Connect v1.x reaches end of support in 1 year
Last week, Microsoft issued a statement on the support of Azure AD Connect version 1.x. It reaches end of support on August 31st, 2022. That is exactly one year from now. What 'unsupported' means In-place upgrade of Windows Server on an Azure AD Connect server is not supported. While you might pull it off, … Continue reading "Azure AD Connect v1.x reaches end of support in 1 year"
HOWTO: Manually delete unavailable print queues from Active Directory
Recently, I advised to disable the Print Spooler service on Domain Controllers. Concluding that blogpost, I mentioned that admins need to perform manual tasks at the end of the lifecycles of published printers if they have printers published. Today, let’s take a look at these manual tasks in the two scenarios you need to pay … Continue reading "HOWTO: Manually delete unavailable print queues from Active Directory"
KnowledgeBase: In-placing upgrading Windows Server for an Azure AD Connect installation is not supported
With the release of Azure AD Connect v2, many Hybrid Identity admins find themselves with Windows Server 2012 and Windows Server 2012 R2 installations with Azure AD Connect v1 installations. As Azure AD Connect v2 does not support installation on these Operating Systems, Microsoft urges these admins to perform an Azure AD Connect swing migration. … Continue reading "KnowledgeBase: In-placing upgrading Windows Server for an Azure AD Connect installation is not supported"
Five Things You should know about Azure AD Connect version 2
Last week, Microsoft released the first version in the 2,0 branch of Azure AD Connect: v2.0.3.0. There are a couple of things that you should be aware of with this version. I’m sharing them with you in this blogpost. Azure AD Connect is Microsoft’s free Hybrid Identity bridge product to synchronize objects and their attributes … Continue reading "Five Things You should know about Azure AD Connect version 2"