Azure Active Directory is Microsoft's Identity Management-as-a-Service solution, offering seamless access, easy collaboration, efficiency in IT processes and improved security and compliance. In its Release Notes for Azure Active Directory, Microsoft communicated the following planned, new and changed functionality for Azure Active Directory for October 2020: What’s Planned Azure AD On-Premises Hybrid Agents Impacted by … Continue reading "What's New in Azure Active Directory for October 2020"
As a blogger at the DirTeam.com / ActiveDir.org Weblogs, I love the way my blog The Things That Are Better Left Unspoken looks. However, the theme I use is an abandoned theme and hasn't been updated in the last ten years. In my defense: It was current when I started blogging fourteen years ago… WordPress … Continue reading "The Trouble with abandoned WordPress Themes, Part 2: Comments no longer showing"
As announced as part of the Azure AD Connect Version Release History page and shared here earlier, yesterday marked the end of Azure AD Connect version 18.104.22.168 and older versions of Azure AD Connect. This way, Microsoft starts enforcing its 18-month support policy for Azure AD Connect versions. For Azure AD Connect admins, running an … Continue reading "Azure AD Connect version 22.214.171.124 and older versions are no longer supported"
On October 20th, 2020, Microsoft released Windows 10, version 20H2 build 19042 to Visual Studio Subscribers and organizations with access to the Software Download Center and the Volume Licensing Service Center. This version is also known as Windows 10 ‘October 2020 Update’. This Windows version introduces five new Group Policy settings. New Group Policy … Continue reading "Windows 10, version 20H2 build 19042 introduces five new Group Policy settings"
I get to investigate quite some mail environments in my work as a consultant. At a certain point you see some patterns emerging. One of those patterns is the correct configuration of mail related DNS records. It's one of the first things I check when I must check an unfamiliar environment. I have talked about … Continue reading "Easily list mail DNS records via this PowerShell script"
Microsoft recommends organizations using Office 365 services to create backups of their data in these services outside of the scope of the functionality of replicas and previous versions. Veeam Backup for Microsoft Office 365 offers a great solution to meet this challenge. However, today’s world requires functionality beyond the default functionality; Admins need remote access … Continue reading "Getting Started with the Self-service Web Portal for Veeam Backup for Microsoft Office 365"
On Tuesday October 13th 2020, Microsoft released updates for all supported versions of Windows and Windows Server to address an elevation of privilege vulnerability in Group Policy, marked as important. Its official common vulnerabilities and exposures (CVE) id is CVE-2020-16939. Yesterday, the Zero Day Initiative (ZDI) shared more details and a Proof of Concept (PoC). … Continue reading "Group Policy Elevation of Privilege Vulnerability (CVE-2020-16939, Important)"
Troubleshooting stories from the field are the best. That’s why I like writing them down. Although, sometimes they might appear as straight cases of schadenfreude, I feel there are lessons to be learned for anyone, if you’re willing to look closely and listen carefully. Last month, I experienced an issue with all four Domain Controllers … Continue reading "From the Field: The case of the randomly rebooting Domain Controllers"
After being in Public Preview since February 2020, Microsoft made the Office 365 app in Azure AD Conditional Access Generally Available. The below image sums up what is in the Office 365 app: The Office 365 app helps with common challenges Microsoft 365 admins have: All the individual services in the Office 365 Suite are … Continue reading "Five things to know about the Office 365 app in Azure AD Conditional Access"
In this series on virtualizing Active Directory on VMware vSphere, we’ve discussed earlier how to set up a straight-forward vCenter delegation model for running virtual Domain Controllers safely. Today, I want to discuss a new feature in VMware vSphere 7 that improves the lives of Identity and Access Management (IAM) professionals working with both technologies: … Continue reading "vSphere 7’s vCenter Server Identity Provider Federation feature allows for MFA"