What's New in Azure Active Directory for April 2022

Azure Active Directory is Microsoft's Identity Management-as-a-Service solution, offering seamless access, easy collaboration, efficiency in IT processes and improved security and compliance. In its Release Notes for Azure Active Directory, Microsoft communicated the following planned, new and changed functionality for Azure Active Directory for April 2022: What’s New Microsoft Defender for Endpoint Signal in Identity … Continue reading "What's New in Azure Active Directory for April 2022"

Exam MS-220 Exchange Online Troubleshooting list of sources

This month the beta exam MS-220: Troubleshooting Microsoft Exchange Online became available. This exam will provide the Microsoft 365 Certified: Exchange Online Support Engineer Specialty. Microsoft Learning announced this new certification in March. Because it's a beta exam there is not a lot of training material or courses (yet) you can use to prepare. I've … Continue reading "Exam MS-220 Exchange Online Troubleshooting list of sources"

You’re invited to the IT-University Masterclass – Securing Active Directory using cloud services… Say What!?

On May 9th, 2022, I will be presenting a masterclass, together with Raymond Comvalius for IT-University.nl. Dutch Raymond and I will be presenting on establishing device trust in the modern age. Over 95% of organizations over 50 people use Active Directory today. Active Directory is the main target for attackers. This leads to data leaks … Continue reading "You’re invited to the IT-University Masterclass – Securing Active Directory using cloud services… Say What!?"

The April 2022 Patch Tuesday addresses 18 vulnerabilities for Domain Controllers running as DNS Servers

When looking at the April 2022 Patch Tuesday today, I noticed eighteen updates that specifically address vulnerabilities in DNS Server. These vulnerabilities are specific to Domain Controllers running DNS Server (in the default configuration), so this sparked my interest in these updates.   Eighteen DNS Server vulnerabilities Seventeen Remote Code Execution vulnerabilities Seventeen DNS Server … Continue reading "The April 2022 Patch Tuesday addresses 18 vulnerabilities for Domain Controllers running as DNS Servers"

What's New in Azure Active Directory for March 2022

Azure Active Directory is Microsoft's Identity Management-as-a-Service solution, offering seamless access, easy collaboration, efficiency in IT processes and improved security and compliance. In its Release Notes for Azure Active Directory, Microsoft communicated the following planned, new and changed functionality for Azure Active Directory for March 2022: What’s Planned Tenant enablement of combined security information registration … Continue reading "What's New in Azure Active Directory for March 2022"

What's New in Microsoft Defender for Identity in March 2022

Microsoft Defender for Identity helps Active Directory admins defend against advanced persistent threats (APTs) targeting their Active Directory Domain Services infrastructures. It is a cloud-based service, where agents on Domain Controllers provide signals to Microsoft's Machine Learning (ML) algorithms to detect and report on attacks. Its dashboard allows Active Directory admins to investigate (potential) breaches … Continue reading "What's New in Microsoft Defender for Identity in March 2022"

On-premises Identity-related updates and fixes for March 2022

Even though Microsoft’s Identity focus moves towards the cloud, they are not forgetting their on-premises roots. Windows Server 2016, Windows Server 2019 and Windows Server 2022 still receive updates. This is the list of Identity-related updates and fixes we saw for March 2022: Windows Server 2016 We observed the following update for Windows Server 2016: … Continue reading "On-premises Identity-related updates and fixes for March 2022"

Multi-Factor Authentication Server version 8.0.8.1 is here

On March 16th, 2022, Microsoft released version 8.0.8.1 of its Azure MFA Server product that allows organization to add multi-factor authentication to RADIUS-, AD FS-, IIS-based and other on-premises authentication scenarios. What’s New The release notes mention one change: Microsoft fixed an issue with IIS Authentication passed sessions to User Portal. Known Issues Windows Authentication … Continue reading "Multi-Factor Authentication Server version 8.0.8.1 is here"

Azure AD Connect v2.1.1.0 fixes a database corruption issue

Yesterday, Microsoft released an update to Azure AD Connect v2.x. that fixes two issues: v2.1.1.0. Note:None of the Azure AD Connect v2.x releases are released for automatic upgrade. Manual upgrades are required to gain the new functionality and security levels once you're on the Azure AD Connect v2 path. Note:Azure AD Connect v1.x releases will … Continue reading "Azure AD Connect v2.1.1.0 fixes a database corruption issue"

HOWTO: Programmatically add a Microsoft Defender for Identity Action Account to Active Directory

Microsoft provides guidance for Managing action accounts for Microsoft Defender for Identity, but this documentation is severely lacking from my point of view: It actually lacks the information on creating the actual group Managed Service Account (gMSA) for the action account, itself. It provides guidance to delegating permissions in Active Directory to an individual account, … Continue reading "HOWTO: Programmatically add a Microsoft Defender for Identity Action Account to Active Directory"