In the series Virtualizing Domain Controllers on vSphere, I explained the importance of proper time synchronization for virtualized Active Directory Domain Controllers and how to keep these Domain Controllers on trusted vSphere hosts only. Recent versions of the VMware Tools have time synchronization disabled by default. This means the reliance on proper time on vSphere hosts … Continue reading "vSphere 7’s vMotion interface notifies for time differences between vSphere hosts"
During a project with one of my customers, I was tasked to look at a non-delivery report (NDR) for a mail message. The bounce error was pretty confusing, but after reviewing the headers, we noticed that the DKIM check had failed. This was a bit of a surprise, because the message was sent from Microsoft … Continue reading "Field Notes: DKIM and missing selector records"
The 2020 Hybrid Identity Protection Conference (HIPConf) was originally planned for April 2020. As New York and other cities around the globe helped us combat the COVID-19 pandemic, this was not a good time to gather and discuss our topics in person. However, organizations worldwide need our guidance more than ever. Cyber crime evolves through … Continue reading "I’ve joined the Semperis Hybrid Identity Protection Podcast"
In this blog post, I want to walk you through my experiences with setting up and enable the interoperability between Microsoft Teams and on-premises Microsoft Exchange Server environments. Since the beginning of this year, Microsoft Teams adoption has seen a tremendous uptick in usage. Organizations needed to adopt Microsoft Teams as their Unified Communications (UC) … Continue reading "Field Notes: Meeting the requirements for Interoperability between Microsoft Teams and Microsoft Exchange Server"
Azure AD Connect is Microsoft’s free tool to synchronize objects and their attributes from Active Directory Domain Services (AD DS) implementations to Azure Active Directory tenants. Many millions of organizations depend on Azure Active Directory and the APIs that the tool connects to. Now, there is a new endpoint Public Preview. I’ve shown you how … Continue reading "HOWTO: Tell if Azure AD Connect is using the v2 Endpoint"
In Microsoft-oriented networking infrastructures, your Active Directory Domain Controllers may suddenly experience high number of Warning events in the System log in Event Viewer (eventvwr.exe) with EventID 5829. The cause Microsoft has added this event by design to warn Active Directory administrators of vulnerable Netlogon connections, in terms of CVE-2020-1472. The eventID was added … Continue reading "Knowledgebase: You experience Warnings with EventID 5829 on Domain Controllers"
Many organizations are adopting Azure AD Join as the mechanism to create a trust relationship between their Windows 10-based devices and their Identity solution. In the obligatory joiners/workers/leavers processes, however, it might make sense to repurpose an Azure AD-joined devices to another person in the organization. In this blogpost I’ll explain how to achieve this … Continue reading "HOWTO: Repurpose an Azure AD-joined device in an organization without Intune"
Two weeks ago, we saw the release of Veeam Backup and Replication version 10a. Veeam Backup & Replication 10a is the newer build of version 10. This update also includes all fixes from v10 Cumulative Patch 1 and v10 Cumulative Patch 2 for v10, and supersedes those patches. What’s New Veeam Backup and Replication 10a … Continue reading "Veeam Backup and Replication version 10a adds support for the latest technology"
Embarrassing The Dutch Data Protection Agency (Dutch: Autoriteit Persoonsgegevens) is responsible for the supervision of correct handing of personal data. This agency must be informed when there is a breach with personal data. It’s the agency that has its duties described within GDPR. So, it is extra painful when they themselves are responsible of a … Continue reading "Quick tips to limit sending mail to the wrong recipient"
Even though Microsoft’s Identity focus moves towards the cloud, they are not forgetting their on-premises roots. Windows Server 2016 and Windows Server 2019 still receive updates. These are the updates and fixes we saw for July 2020: Windows Server 2016 We observed the following updates for Windows Server 2016: KB4565511 July 14, 2020 The July … Continue reading "On-premises Identity updates & fixes for July 2020"