I’m proud to announce I am a 2021 VMware vExpert. This is my third vExpert award in a row. It’s an honor for me to be a part of the team driving Active Directory virtualization on VMware vSphere with Deji Akomolafe and Matt Liebowitz. Thank you! About the VMware vExpert Program The VMware vExpert Program is VMware’s global evangelism … Continue reading "I'm a 2021 VMware vExpert"
Yesterday, for its February 2021 Patch Tuesday, Microsoft released a critical security update for PKU2U. This vulnerability is known as CVE-2021-25195 and rated with CVSSv3.0 scores of 7.8/6.8. About PKU2U Authentication PKU2U is a peer-to-peer authentication protocol. This setting prevents online identities from authenticating to domain-joined systems. Authentication will be centrally managed with Windows … Continue reading "Windows PKU2U Elevation of Privilege Vulnerability (CVE-2021-25195, Critical)"
Today, for its February 2021 Patch Tuesday, Microsoft released a critical security update for DNS Servers running Windows Server. This vulnerability is known as CVE-2021-24078 and rated with CVSSv3.0 scores of 9.8/8.5. A remote code execution vulnerability exists in Windows Domain Name System (DNS) servers. An attacker who successfully exploited the vulnerability could run arbitrary … Continue reading "Windows DNS Server Remote Code Execution Vulnerability (CVE-2021-24078, Critical CVSSv3 9.8/8.5)"
Today, for its February 2021 Patch Tuesday, Microsoft released an important security update for certificates in Windows and Windows Server. This vulnerability is known as CVE-2021-1731 and rated with CVSSv3.0 scores of 5.5/4.8. When glancing over the vulnerability, it might not be a particularly important vulnerability, but its implications are wide and deep; This PFX … Continue reading "PFX Encryption Security Feature Bypass Vulnerability (CVE-2021-1731, Important)"
I’m proud to share that I’ll be returning as a speaker for Azure Saturday Belgrade. This year, the event is hosted virtually on Saturday February 20th 2021. About Azure Saturday Belgrade As part of AzureDays.org events, Azure Saturday Belgrade is a community-driven event to share knowledge and experiences about Microsoft Azure. In their part of … Continue reading "I’m Speaking at Azure Saturday Belgrade"
This month, Raymond Comvalius and I are introducing a new initiative: the IT Bro’s podcast. Our goal is to provide a weekly update to Dutch IT professionals who work with Microsoft products and technologies. We will be talking in Dutch primarily, but will switch to English when we have non-Dutch guests joining us. Our focus … Continue reading "Introducing IT Bro’s: The New Dutch Microsoft-oriented IT Pro podcast"
Microsoft issued a 19-page report, titled ‘The state of apps by Microsoft identity 2020’. In this document, Microsoft shares it analysis of enterprise cloud app usage. It shows how and what applications organizations are securing with Azure AD. It also shares insights into how app usage shifted in 2020 compared to the years prior. Note: … Continue reading "Five Things of Notice in the ‘State of Apps by Microsoft Identity 2020’ Report"
Even though Microsoft’s Identity focus moves towards the cloud, they are not forgetting their on-premises roots. Windows Server 2016 and Windows Server 2019 still receive updates. These are the Identity-related updates and fixes we saw for January 2021: Windows Server 2016 We observed the following update for Windows Server 2016: KB4598243 January 12, 2021 … Continue reading "On-premises Identity-related updates and fixes for January 2021"
Azure Active Directory is Microsoft's Identity Management-as-a-Service solution, offering seamless access, easy collaboration, efficiency in IT processes and improved security and compliance. In its Release Notes for Azure Active Directory, Microsoft communicated the following planned, new and changed functionality for Azure Active Directory for January 2021: What’s planned Secret token will be a mandatory … Continue reading "What's New in Azure Active Directory for January 2021"
Active Directory Domain Services (AD DS) and Active Directory Certificate Services (AD CS) use the Extensible Storage Engine (ESE) as its database. Now Microsoft has open sourced the code for its database engine available to all on GitHub. About the Extensible Storage Engine The Extensible Storage Engine (ESE) is an embedded / Indexed Sequential … Continue reading "Active Directory’s ESE database code now available on GitHub"