Collaboration helps organizations increase their effectiveness in their (supply) chain by allowing people in other organization to work together in shared functionality. In the Microsoft Cloud, specifically, it allows people with Azure AD accounts to access Microsoft 365 and Microsoft Azure functionality. With all the new settings, I've identified 100+ different ways to collaborate, but … Continue reading "Eight things you should know about Azure AD Cross-tenant Synchronization"
Category: Uncategorized
Azure AD Connect Sync v2.2.1.0 offers functional changes and bug fixes
Azure AD Connect v2.1.15.0 was the first v2.x to be announced with Automatic Upgrades functionality, on July 6th 2022. However, Azure AD Connect installations with custom synchronization rules fell out of scope for this feature, as were v1.x installations in the past. Azure AD Connect v2.2.1.0 offers to correct this oversight. Actually, this version is … Continue reading "Azure AD Connect Sync v2.2.1.0 offers functional changes and bug fixes"
Join me for my Tech Talk at VeeamON 2023 in Miami
I'm excited to announce that I will be hosting one of the Tech Talks at VeeamON in Miami this year. About VeeamON VeeamON is Veeam's yearly community event tailored for Data Recovery experts. Just like other conferences, it offers technical sessions. However VeeamON also features celebrations, LabWarz, a playground and the community hub to … Continue reading "Join me for my Tech Talk at VeeamON 2023 in Miami"
On-premises Identity-related updates and fixes for April 2023
Even though Microsoft’s Identity focus moves towards the cloud, Windows Server 2016, Windows Server 2019 and Windows Server 2022 still receive updates to improve the experiences and security of Microsoft’s on-premises powerhouses. This is the list of Identity-related updates and fixes we saw for April 2023: Windows Server 2016 We observed the following update … Continue reading "On-premises Identity-related updates and fixes for April 2023"
Windows Server 2022-based AD FS Servers may be vulnerable to Remote Code Execution (CVE-2023-23392)
This week, on its Patch Tuesday for March 2023, Microsoft released a patch that addresses a highly critical vulnerability (CVE-2023-23392) in the HTTP Protocol Stack. About the vulnerability CVE-2023-23392 details a remote code execution vulnerability that can be used to attack AD FS servers over the internet. An unauthenticated attacker could send a specially crafted packet … Continue reading "Windows Server 2022-based AD FS Servers may be vulnerable to Remote Code Execution (CVE-2023-23392)"
Join us for a webinar on Preventing attacks against Active Directory using Entra and Netwrix technologies
I’m proud to announce that I will be co-presenting a webinar with Netwrix’ Dirk Schrader on Tuesday February 21st, 2023 at 8PM CET (UTC+1) on preventing attacks against Active Directory using Entra and Netwrix technologies. About the webinar Active Directory controls access to critical systems and data for organizations around the world, but it … Continue reading "Join us for a webinar on Preventing attacks against Active Directory using Entra and Netwrix technologies"
Multi-Factor Authentication Server version 8.1.3.1 offers improved migration functionality to Azure MFA
On November 11th, 2022, Microsoft released version 8.1.3.1 of its Azure MFA Server product that allows organization to add multi-factor authentication to RADIUS-, AD FS-, IIS-based and other on-premises authentication scenarios. What’s New The release notes mention the following changes: Seamless Upgrades Azure MFA Server 8.1.3 introduces functionality to eliminate downtime when upgrading to … Continue reading "Multi-Factor Authentication Server version 8.1.3.1 offers improved migration functionality to Azure MFA"
I’m speaking at the European SharePoint, Office 365 and Azure Conference (ESPC22)
I’m happy to announce that I am returning as a speaker for the European SharePoint, Office 365 and Azure Conference (ESPC) 2022 from November 28th to December 1st, 2022. About ESPC22 The European SharePoint, Office 365 & Azure Conference (ESPC) provides Microsoft 365 and Azure professionals with the expert content and connections to help them achieve … Continue reading "I’m speaking at the European SharePoint, Office 365 and Azure Conference (ESPC22)"
Azure AD Connect v2.1.20.0 offers to synchronize to Azure AD’s employeeLeaveDateTime attribute
With Microsoft introducing the Lifecycle Workflows functionality Public Preview at its Microsoft Ignite event last month, some things are definitely changing… Azure AD is now poised to become the leading identity management plane and Active Directory to become a mere authentication store.However, to make that dream work, Azure AD Connect needs to offer additional functionality … Continue reading "Azure AD Connect v2.1.20.0 offers to synchronize to Azure AD’s employeeLeaveDateTime attribute"
HOWTO: Detect Kerberos tickets that are encrypted using RC4
When it comes to encryption, many weak algorithms and ciphers are still heavily used and relied upon in Active Directory environments everywhere. One of the typical weak algorithms used in encrypting Kerberos tickets is RC4; the cipher RC4-HMAC to be precise. Typically, RC4 is used by legacy systems, over misconfigured Active Directory trusts, and by … Continue reading "HOWTO: Detect Kerberos tickets that are encrypted using RC4"