Most Microsoft-based Hybrid Identity implementations use Active Directory Federation Services (AD FS) Servers, Web Application Proxies and Azure AD Connect installations. In this series, labeled Hardening Hybrid Identity, we’re looking at hardening these implementations, using recommended practices. In this part of the series, we’ll harden the AD FS Server installations, by disabling unnecessary services running … Continue reading "HOWTO: Disable Unnecessary Services and Scheduled Tasks on AD FS Servers"
Category: Security
Security
HOWTO: Disable Unnecessary Services on Web Application Proxies
Most Microsoft-based Hybrid Identity implementations use Active Directory Federation Services (AD FS) Servers, Web Application Proxies and Azure AD Connect installations. In this series, labeled Hardening Hybrid Identity, we’re looking at hardening these implementations, using recommended practices. Let’s harden the Web Application Proxy installations, by disabling unnecessary services running on it. This way, we lower … Continue reading "HOWTO: Disable Unnecessary Services on Web Application Proxies"
HOWTO: Disable account enumeration in Azure Active Directory
To celebrate the availability of the Active Directory Administration Cookbook, I decided to write a blogpost in the typical structure of a recipe in this book: Disabling account enumeration Use this recipe to disable account enumeration for an Azure Active Directory tenant. After completing this recipe, people with user accounts in the tenant will … Continue reading "HOWTO: Disable account enumeration in Azure Active Directory"
HOWTO: Install CensorNet’s SMS PASSCODE AD FS Agent
Today, I had the pleasure of installing and configuring the AD FS Agent that is part of CensorNet’s SMS PASSCODE product., version 2018 (version 10). Here’s how to perform this task yourself. About the Extensible Authentication Framework Active Directory Federation Services (AD FS) offers the Extensible Authentication Framework (EAF). Leveraging this functionality, multi-factor authentication … Continue reading "HOWTO: Install CensorNet’s SMS PASSCODE AD FS Agent"
I will be speaking at IT/Dev Connections 2018!
Next week I will be speaking at the IT/Dev Connection conference in Dallas (TX) during 16-18th October 2018, which is particularly exciting for me as it is the first time I will present in the USA! The session title is “Securing, Protecting, and Managing the Flow of Corporate Communications”. The session abstract tells you a … Continue reading "I will be speaking at IT/Dev Connections 2018!"
I’m staffing a Community Booth at two Community Social events at Microsoft Ignite 2018
Community Central at Microsoft Ignite is bigger, better and stronger, compared to last year’s Ignite, and I’m proud to share that I’m part of it! Besides my two theater sessions on Identity and Access Management (IAM) at Ignite, I will also be staffing a Community Booth at two Community Social events. About Community Central … Continue reading "I’m staffing a Community Booth at two Community Social events at Microsoft Ignite 2018"
Configuring Account Lockout throughout a Hybrid Identity Environment
Denial of Service attacks on identity and access systems are common place. When you think you’re done when you’ve covered all the bases with account lock-out in your on-premises Active Directory Domain Services (AD DS) environment, you’re wrong. Hybrid Identity requires more effort and Microsoft only made the tools you need generally available this month. … Continue reading "Configuring Account Lockout throughout a Hybrid Identity Environment"
I will be speaking at the European Collaboration Summit 2018
Some exciting news! I’ll be speaking at the European Collaboration Summit 2018 in Mainz, Germany on May 28-30. My session is “Securing Exchange Online” and during that hour I will go through the capabilities of Exchange Online (Office 365) to further secure your email data and mail flow based on up-to-date know-how. It’s a topic … Continue reading "I will be speaking at the European Collaboration Summit 2018"
Office 365 to enforce TLS 1.2 per October 15, 2020
Update 21 July 2020 Microsoft has set a new date for the deprecation of TLS1.0 and 1.1, after a previous postponement due to the pandemic. You can find it in the Microsoft 365 Message Center message MC218794, which also references this Docs article. From October 15, 2020 onward, Microsoft will gradually enforce TLS1.2 on Office … Continue reading "Office 365 to enforce TLS 1.2 per October 15, 2020"
I'll be speaking at E-Communications & Collaboration Day 2017 (BE-COM.eu) on May 3rd 2017
In a few weeks, I’ll be travelling to Novotel Leuven in my neighboring country Belgium for the E-Communications & Collaboration Day 2017, a full-day (May 3rd 2017) of expert presentations and content about Office 365, Exchange, Skype for Business and related technologies. During this day, I will be presenting “Securing Exchange Online”: In this session, … Continue reading "I'll be speaking at E-Communications & Collaboration Day 2017 (BE-COM.eu) on May 3rd 2017"