For Hybrid Identity admins still stuck with Azure AD Connect v1.x installations on Windows Server 2008, Windows Server 2008 R2, Windows Server 2012 and/or Windows Server 2012 R2, Microsoft released a new version of Azure AD Connect that addresses two issues. What's Fixed AutoUpgrade reliability Microsoft addressed an issue where the Autoupgrade process attempted to … Continue reading "Azure AD Connect v18.104.22.168 addresses two issues"
The lost two months have been a bonanza for Azure AD Connect releases. Today, Microsoft released version 22.214.171.124 of Azure AD Connect as a maintenance update for it's free solution to synchronize objects from Active Directory and LDAPv3-compatible identity stores to Azure AD. What's Fixed Installation on servers with .NET Framework v4.6+ Microsoft addressed … Continue reading "Azure AD Connect v126.96.36.199 addresses four issues"
Admins that have bit the bullet on Azure AD Connect v2 are now eating the sour grapes of that decision, as Microsoft doesn't offer Automatic Upgrades on any of the v2 builds released to date. About Azure AD Connect v2 Azure AD Connect is Microsoft’s free Hybrid Identity bridge product to synchronize objects and their … Continue reading "Admins that have upgraded to Azure AD Connect v2 are at risk of running out of date and insecure installations"
The lost two months have been a bonanza for Azure AD Connect releases. What started out with the first v2 release on July 20th, led to a security release three weeks later and two bug fix releases another week later. Now, four weeks after that last release, Azure AD Connect v188.8.131.52 sees the light. It … Continue reading "Azure AD Connect v184.108.40.206 addresses a security issue and other bugs"
Last week, Microsoft issued a statement on the support of Azure AD Connect version 1.x. It reaches end of support on August 31st, 2022. That is exactly one year from now. What 'unsupported' means In-place upgrade of Windows Server on an Azure AD Connect server is not supported. While you might pull it off, … Continue reading "Azure AD Connect v1.x reaches end of support in 1 year"
Azure AD Connect has seen its share of new releases in the last weeks, following a security issue and an issue with Password Hash Synchronization (PHS) transactions for a large number of users (v2 only). Yesterday, Microsoft's free Identity synchronization solution saw another two new releases addressing an issue with Password Hash Synchronization (PHS) in … Continue reading "Azure AD Connect v220.127.116.11 and v18.104.22.168 solve a PHS issue in renamed Active Directory forests"
Yesterday, a mere week after the release of Azure AD Connect version 22.214.171.124, a security release for the 2.0 branch, Microsoft has released version 126.96.36.199, fixing a bug in the 188.8.131.52 en 184.108.40.206 releases. What's fixed This release addresses an issue where, when syncing a large number of Password Hash Synchronization (PHS) transactions, the … Continue reading "Azure AD Connect v220.127.116.11 fixes a Password Hash Synchronization bug"
Many organizations with Azure AD tenant are currently transitioning from federation to Pass-through Authentication (PTA) and/or authentication based on Password Hash Synchronization (PHS). The Staged Roll-out feature is a straight-forward way to perform this transition. Microsoft has described how to migrate from federation to cloud authentication in Azure Active Directory using this feature. Note: In … Continue reading "How to check if Azure AD has processed the hybrid authentication method change"
This weekend, Microsoft released a new version of the Azure AD Connect Provisioning Agent. Version 1.1.582.0 addresses an authentication bypass vulnerability that is present in all previous versions of the agent. About the vulnerability An attacker can successfully perform a Meddle-in-the-Middle (MitM) attack between Windows Server installations running Azure AD Connect Provisioning Agents and Active … Continue reading "Version 1.1.582.0 of the Azure AD Connect Provisioning Agent prevents MitM attacks towards Domain Controllers (CVE-2021-36949)"
Today, Microsoft released two new Azure AD Connect version to address an authentication bypass vulnerability in Azure AD Connect. About the vulnerability An attacker can successfully perform a Meddle-in-the-Middle (MitM) attack between Azure AD Connect server(s) and Active Directory Domain Controller(s). The attacker would merely need to possess domain user credentials to be able … Continue reading "Two new Azure AD Connect versions were released to prevent MitM attacks towards Domain Controllers (CVE-2021-36949)"