On-premises Identity-related updates and fixes for December 2020

Even though Microsoft’s Identity focus moves towards the cloud, they are not forgetting their on-premises roots. Windows Server 2016 and Windows Server 2019 still receive updates. These are the Identity-related updates and fixes we saw for December 2020:   Windows Server 2016 We observed the following update for Windows Server 2016: KB4593226 December 8, 2020 … Continue reading "On-premises Identity-related updates and fixes for December 2020"

HOWTO: Create an LDAP Connector account in AD LDS for Azure AD Connect

Recently, I showed you how to synchronize an Active Directory Lightweight Directory Services (AD LDS) or an LDAP v3-compatible directory to Azure AD using Azure AD Connect. In that blogpost, I listed as one of the requirements that you need a service account that is part of the LDAP tree and has sufficient permissions to … Continue reading "HOWTO: Create an LDAP Connector account in AD LDS for Azure AD Connect"

HOWTO: Set the Retention Period for the Azure Log Analytics Workspace where you stream Azure AD logs to

When you stream Azure AD logs to an Azure Log Analytics workspace, you might just do it to get an alert to notify when an additional person is assigned the Azure AD Global Administrator role or when an Azure AD emergency access account is used. For these purposes, the default retention period for an Azure … Continue reading "HOWTO: Set the Retention Period for the Azure Log Analytics Workspace where you stream Azure AD logs to"

What's New in Azure Active Directory for December 2020

Azure Active Directory is Microsoft's Identity Management-as-a-Service solution, offering seamless access, easy collaboration, efficiency in IT processes and improved security and compliance. In its Release Notes for Azure Active Directory, Microsoft communicated the following planned, new and changed functionality for Azure Active Directory for December 2020:   What’s New Azure AD B2C Phone Sign-up and … Continue reading "What's New in Azure Active Directory for December 2020"

The DirTeam.com/ActiveDir.org Weblogs in 2020

Goodbye 2020! As we say goodbye to yet another calendar year, we’re sharing our achievements for the past year. Pageviews and visits Throughout 2020, the DirTeam.com / ActiveDir.org Weblogs served just shy of 12 million pages. To be exact, we saw 11,728,906 pageviews this calendar year. Top blogs Traditionally, at the end of the year … Continue reading "The DirTeam.com/ActiveDir.org Weblogs in 2020"

KnowledgeBase: Some users receive an "We're sorry, we ran into a problem" error when registering Azure MFA

Today, Raymond and I troubleshooted an issue for several people who received the ‘Sorry, we ran into a problem’ error when trying to register their security information. As is our mutual expectation, I decided to document the issue. When you run into the same situation, you might find it helpful.   The situation An Azure … Continue reading "KnowledgeBase: Some users receive an "We're sorry, we ran into a problem" error when registering Azure MFA"

Veeam Backup for Microsoft Office 365 version 5a resolves common issues with version 5

Earlier this month, we saw the release of Veeam Backup for Office 365 v5. The new version now supports Backup and Restore of Teams and offers Architectural Enhancements. These architectural enhancements are the result of many major under-the-hood changes in this release. Veeam operates a model where they stage releases and where they keep a … Continue reading "Veeam Backup for Microsoft Office 365 version 5a resolves common issues with version 5"

HOWTO: Check your LAPS Implementation for Proper Security

Recently, several projects, including Akijo’s and n00py’s work, have emerged that exploit misconfigurations of Microsoft’s Local Administrator Password Solution (LAPS) in Active Directory environments. This begs the question: how to make sure their LAPS implementation is secure? It’s a solution to manage passwords for privileged accounts. If this breaks, like cpassword values in Group Policy … Continue reading "HOWTO: Check your LAPS Implementation for Proper Security"

Using Azure AD Connect to synchronize Active Directory Lightweight Directory Services (AD LDS) and other LDAPv3 directories to Azure Active Directory

An estimated 97% of all organizations with over 50 people use Active Directory Domain Services (AD DS) as their on-premises directory service. This, however, leaves a lot of organizations with other directories, that are largely LDAPv3-compatible. How would these organizations embrace Azure Active Directory, as the world and Microsoft’s investments shift to cloud-based directory services? … Continue reading "Using Azure AD Connect to synchronize Active Directory Lightweight Directory Services (AD LDS) and other LDAPv3 directories to Azure Active Directory"