In recent years, if you wanted to make backups of objects in Microsoft Entra ID (Azure AD) and be able to restore them reliably, there was only one vendor that met the bill. Now, at the end of 2023, I'm seeing other companies offering help with backing up and restoring objects in Microsoft Entra ID. … Continue reading "Backing up and Restoring Entra ID objects and their attributes in 2023"
Category: Enterprise Security
Enterprise Security
A recent Microsoft change might prompt you to reconsider guest access policies
While Active Directory and AD FS admins may feel that they are on top of things as new Operating Systems versions only typically appear every 3 years. However, when adding Azure AD to the mix, a constellation emerges where the change rate of Azure AD may suddenly wreak havoc… A recent change Recently, Microsoft … Continue reading "A recent Microsoft change might prompt you to reconsider guest access policies"
You're invited to the IT-University Masterclass – Securing Azure AD without Premium features, Fact or Fiction?
On Monday March 13th, 2023, I will be presenting a masterclass, together with Raymond Comvalius for IT-University.nl. Dutch Raymond and I will be presenting on a topic that is important for many organizations who are looking to do more with less. Specifically: less Premium licenses. It seems like you can only have security in Azure AD … Continue reading "You're invited to the IT-University Masterclass – Securing Azure AD without Premium features, Fact or Fiction?"
HOWTO: Detect Apps and Services using LDAP instead of LDAPS
Active Directory Domain Services (AD DS) offers many ways to integrate applications and services. Traditionally, the Lightweight Directory Access Protocol (LDAP) was used by software developers to integrate. While Kerberos-based Integrated Windows Authentication (IWA) can also be used, LDAP has kept a certain foothold for software solutions, as it is also available on non-Windows and … Continue reading "HOWTO: Detect Apps and Services using LDAP instead of LDAPS"
Going All-in with HornetSecurity 365 Total Protection
Previously, I’ve shared my experiences with Altaro’s Office 365 Backup and Hornetsecurity’s 365 Threat Monitor. Both services add information security value on their own, but are also part of something bigger: HornetSecurity’s 365 Total Protection. Should you go all-in with HornetSecurity’s 365 Total Protection to face your Microsoft 365 challenges head-on? The three flavours of … Continue reading "Going All-in with HornetSecurity 365 Total Protection"
TODO: Mitigate the Information Disclosure vulnerability caused by improperly configured Azure Migrate applications
Last week, Microsoft issued security guidance on a security issue within Azure Active Directory. In this guidance, Microsoft instructs Azure AD admins to rotate the password for Azure Migrate applications, when these applications have been created prior to November 2, 2021. About the vulnerability CVE-2021-42306 is a vulnerability in the way Azure AD stores the … Continue reading "TODO: Mitigate the Information Disclosure vulnerability caused by improperly configured Azure Migrate applications"
TODO: Change the credentials for Azure Automation Run-As accounts
Last week, Microsoft issued security guidance on a security issue within Azure Active Directory. In this guidance, Microsoft instructs Azure AD admins to rotate the password for Azure Automation Run-As accounts, when these accounts have been created between October 15, 2020 and October 15, 2021. About the vulnerability CVE-2021-42306 is a vulnerability in the way … Continue reading "TODO: Change the credentials for Azure Automation Run-As accounts"
Azure Active Directory-related sessions at Identiverse 2021
Identiverse is the place for all things Identity. This year’s Identiverse Conference marks the 12th Identiverse Conference; its first-ever hybrid event to be held starting June 21, 2021. The in-person component is in Denver, Colorado with an accompanying virtual component that can be accessed from anywhere. About Identiverse Identiverse is the hub for all … Continue reading "Azure Active Directory-related sessions at Identiverse 2021"
KnowledgeBase: A Sign-in Window appears while configuring Azure AD Connect and configuration fails
Sometimes, the installation of Azure AD Connect can mess up your project deadlines in mere seconds. In this blogpost, I want to share an error that kept the admins of an organization occupied for several days, while it was easy to fix. The situation An organization uses Azure AD and Azure AD Connect. After … Continue reading "KnowledgeBase: A Sign-in Window appears while configuring Azure AD Connect and configuration fails"
How Hot Patch for Windows Server Azure Edition helps secure Domain Controllers
At Microsoft Ignite 2021 Spring Edition, Microsoft introduces the Public Preview of Hot Patching for Windows Server Azure Edition. About hot patching for Windows Server Azure Edition Microsoft announced new capabilities at Microsoft Ignite 2021 Spring edition for Azure Automanage to simplify operations for Windows Server-based virtual machines (VMs). Azure Automanage helps organizations to reduce … Continue reading "How Hot Patch for Windows Server Azure Edition helps secure Domain Controllers"