Azure AD Connect v2.0.25.1 addresses a security issue and other bugs

The lost two months have been a bonanza for Azure AD Connect releases. What started out with the first v2 release on July 20th, led to a security release three weeks later and two bug fix releases another week later. Now, four weeks after that last release, Azure AD Connect v2.0.25.1 sees the light. It … Continue reading "Azure AD Connect v2.0.25.1 addresses a security issue and other bugs"

Azure AD Connect v1.x reaches end of support in 1 year

Last week, Microsoft issued a statement on the support of Azure AD Connect version 1.x. It reaches end of support on August 31st, 2022. That is exactly one year from now.   What 'unsupported' means In-place upgrade of Windows Server on an Azure AD Connect server is not supported. While you might pull it off, … Continue reading "Azure AD Connect v1.x reaches end of support in 1 year"

Azure AD Connect v1.6.13.0 and v2.0.10.0 solve a PHS issue in renamed Active Directory forests

Azure AD Connect has seen its share of new releases in the last weeks, following a security issue and an issue with Password Hash Synchronization (PHS) transactions for a large number of users (v2 only). Yesterday, Microsoft's free Identity synchronization solution saw another two new releases addressing an issue with Password Hash Synchronization (PHS) in … Continue reading "Azure AD Connect v1.6.13.0 and v2.0.10.0 solve a PHS issue in renamed Active Directory forests"

Azure AD Connect v2.0.9.0 fixes a Password Hash Synchronization bug

Yesterday, a mere week after the release of Azure AD Connect version 2.0.8.0, a security release for the 2.0 branch, Microsoft has released version 2.0.9.0, fixing a bug in the 2.0.3.0 en 2.0.8.0 releases.   What's fixed This release addresses an issue where, when syncing a large number of Password Hash Synchronization (PHS) transactions, the … Continue reading "Azure AD Connect v2.0.9.0 fixes a Password Hash Synchronization bug"

How to check if Azure AD has processed the hybrid authentication method change

Many organizations with Azure AD tenant are currently transitioning from federation to Pass-through Authentication (PTA) and/or authentication based on Password Hash Synchronization (PHS). The Staged Roll-out feature is a straight-forward way to perform this transition. Microsoft has described how to migrate from federation to cloud authentication in Azure Active Directory using this feature. Note: In … Continue reading "How to check if Azure AD has processed the hybrid authentication method change"

Version 1.1.582.0 of the Azure AD Connect Provisioning Agent prevents MitM attacks towards Domain Controllers (CVE-2021-36949)

This weekend, Microsoft released a new version of the Azure AD Connect Provisioning Agent. Version 1.1.582.0 addresses an authentication bypass vulnerability that is present in all previous versions of the agent. About the vulnerability An attacker can successfully perform a Meddle-in-the-Middle (MitM) attack between Windows Server installations running Azure AD Connect Provisioning Agents and Active … Continue reading "Version 1.1.582.0 of the Azure AD Connect Provisioning Agent prevents MitM attacks towards Domain Controllers (CVE-2021-36949)"

Two new Azure AD Connect versions were released to prevent MitM attacks towards Domain Controllers (CVE-2021-36949)

Today, Microsoft released two new Azure AD Connect version to address an authentication bypass vulnerability in Azure AD Connect.   About the vulnerability An attacker can successfully perform a Meddle-in-the-Middle (MitM) attack between Azure AD Connect server(s) and Active Directory Domain Controller(s). The attacker would merely need to possess domain user credentials to be able … Continue reading "Two new Azure AD Connect versions were released to prevent MitM attacks towards Domain Controllers (CVE-2021-36949)"

KnowledgeBase: In-placing upgrading Windows Server for an Azure AD Connect installation is not supported

With the release of Azure AD Connect v2, many Hybrid Identity admins find themselves with Windows Server 2012 and Windows Server 2012 R2 installations with Azure AD Connect v1 installations. As Azure AD Connect v2 does not support installation on these Operating Systems, Microsoft urges these admins to perform an Azure AD Connect swing migration. … Continue reading "KnowledgeBase: In-placing upgrading Windows Server for an Azure AD Connect installation is not supported"

Five Things You should know about Azure AD Connect version 2

Last week, Microsoft released the first version in the 2,0 branch of Azure AD Connect: v2.0.3.0. There are a couple of things that you should be aware of with this version. I’m sharing them with you in this blogpost. Azure AD Connect is Microsoft’s free Hybrid Identity bridge product to synchronize objects and their attributes … Continue reading "Five Things You should know about Azure AD Connect version 2"

Azure AD Connect version 2.0.3.0 is here

It’s time for a new version of Azure AD Connect to incorporate Microsoft’s lessons learned and distribute the fixes Microsoft made to the larger public. Yesterday, Microsoft released the first version in the 2.x branch of Azure AD Connect: v2.0.3.0 Azure AD Connect is Microsoft’s free Hybrid Identity bridge product to synchronize objects and their … Continue reading "Azure AD Connect version 2.0.3.0 is here"