I have identified an issue with Azure Multi-Factor Authentication (MFA) in a hybrid deployment. When you access the User Portal to activate the mobile app, you receive an error. All other Multi-Factor Authentication (MFA) functionality works. The situation After you’ve deployed a Multi-Factor Authentication Server installation as part of your Azure MFA hybrid implementation, … Continue reading "Knowledgebase: You receive a "Web Service Requests must be protected by authentication" error when activating a Multi-Factor Auth app"
When you’re setting up Microsoft Azure Multi-factor Authentication (Azure MFA) in a setup involving the on-premises MFA Server, and want to use the User portal for registration, you might encounter an error that makes the portal unusable. Luckily, there’s a solution. The situation On an on-premises Windows Server installation with the Azure Multi-factor Authentication … Continue reading "KnowledgeBase: Azure MFA Portal shows error “Error communicating with the local Multi-Factor Authentication service. Please contact your administrator.”"
Yesterday, Microsoft issued a new Knowledgebase article for the brave people, like you ant me, that run Windows 10 Technical Preview, build 10041. It fixes a bug where the user name and password box might not appear on the sign-in screen. The situation You run the 32bit (x86) version of Windows 10 Technical Preview … Continue reading "KnowledgeBase: The user name and password box might not appear on the sign-in screen in Windows 10 Technical Preview"
While this has proven to be n interesting month with the Factoring RSA Export Keys (FREAK) technique affecting a plethora of Operating Systems, Microsoft has also issued an update to address a privately reported vulnerability in NETLOGON. About the vulnerability A spoofing vulnerability exists in NETLOGON that is caused when the NETLOGON service improperly … Continue reading "Security Thoughts: Vulnerability in NETLOGON cloud allow spoofing (MS15-027, CVE-2015-0005)"
In recent days, a new attack vector, called the FREAK technique, that facilitates SSL/TLS Man-in-the-Middle (MitM) attacks was in the news. Microsoft has confirmed that its implementations of SChannel in Windows and Windows Server are also vulnerable to this attack method and has released updates for all its supported Operating Systems. About FREAK On … Continue reading "Security Thoughts: Vulnerability in SChannel allows security bypassing (Important, FREAK, MS15-031, CVE-2015-1637)"
I’m seeing lots of people adopting the Technical Previews of Windows 10 and Windows Server 2016 around me, and running Virtual Machines (VMs) on the built-in Hyper-V hypervisor seems to be among the scenarios tested thoroughly. Microsoft has issued a KnowledgeBase article detailing an update in the Integration Components (ICs) for Windows 7, Windows 8.1, … Continue reading "Running downlevel VMs on Windows 10 Hyper-V? Update the Integration Components"
Sometimes, an easy task becomes daunting. Especially when you’re working with technology like Active Directory Domain Services and you can’t even get a server promoted to a Domain Controller because the promotion process hangs and you’re left without clues. The situation You can promote a Windows Server to an Active Directory in the following … Continue reading "KnowledgeBase: Domain Controller promotion stops responding when NetBIOS over TCPIP is disabled in Windows Server 2012 R2"
While going through the Release Notes for the Windows Server Technical Preview and the Release Notes for Windows 10, I noticed something quite interesting: If you join a computer with Trusted Platform Management (TPM) enabled to a domain in which there are no domain controllers running at least Windows Server 2012, computer authentication and those … Continue reading "Knowledgebase: Known Issue with Windows and Windows Server Technical Preview in a pre-Windows Server 2012 Active Directory environment"
Active Directory Federation Services (AD FS) in Windows Server 2012 R2 is a vastly improved version of Active Directory Federation Services found in previous versions of Windows Server. One of its features, however, might prove extremely counter-productive and counter-intuitive to its feature name and normal behavior in a certain scenario. The situation Active Directory … Continue reading "KnowledgeBase: ADFS authentication issue for Active Directory users when extranet lockout is enabled"
Last year, Microsoft has identified an issue in Windows Server 2012 and Windows Server 2012 R2, that occurs when you have Active Directory Domain Controllers that are running Windows Server 2012 R2 or Windows Server 2012 in an Active Directory Domain and you install a replica Domain Controller on a Windows Server 2012 R2-based host. … Continue reading "KnowledgeBase: Lsass.exe on a Windows Server 2012 R2 or Windows Server 2012-based Domain Controller crashes when installing a replica Windows Server 2012 R2-based Domain Controller"