You searched for mS-DS-ConsistencyGUID - Page 3 of 4 - The DirTeam.com / ActiveDir.org Weblogs

KnowledgeBase: You receive error ‘AADSTS5000812: The SAML 1.1 credential must contain exactly one or zero claims of type ImmutableID’ when signing into Azure AD-integrated resources

In Hybrid Identity implementations, Active Directory Domain Services (AD DS), Active Directory Federation Services (AD FS) and Azure AD work together to authenticate people in your organization, so that they can work with Azure AD-integrated resources like Office 365. Sometimes, the constellation fails and you get an error page, instead of reaching the desired application, … Continue reading "KnowledgeBase: You receive error ‘AADSTS5000812: The SAML 1.1 credential must contain exactly one or zero claims of type ImmutableID’ when signing into Azure AD-integrated resources"

The DirTeam.com/ActiveDir.org Weblogs in 2019

Goodbye 2019! As we say goodbye to yet another calendar year, we’re sharing our achievements for the past year. Pageviews and visits Throughout 2019, the DirTeam.com / ActiveDir.org Weblogs served seven million pages. To be exact: we saw 7,377,049 pageviews. From a visitor point of view, this results in the following diagram: New bloggers In … Continue reading "The DirTeam.com/ActiveDir.org Weblogs in 2019"

HOWTO: Properly delegate Directory permissions to Azure AD Connect service accounts

Most Microsoft-based Hybrid Identity implementations use Active Directory Federation Services (AD FS) Servers, Web Application Proxies and Azure AD Connect installations. In this series, labeled Hardening Hybrid Identity, we’re looking at hardening these implementations, using recommended practices. In this part of the series, we’ll look at properly delegating directory access to Azure AD Connect service … Continue reading "HOWTO: Properly delegate Directory permissions to Azure AD Connect service accounts"

HOWTO: Disable Unnecessary Services and Scheduled Tasks on Windows Servers running Azure AD Connect

Most Microsoft-based Hybrid Identity implementations use Active Directory Federation Services (AD FS) Servers, Web Application Proxies and Azure AD Connect installations. In this series, labeled Hardening Hybrid Identity, we’re looking at hardening these implementations, using recommended practices. Why harden Azure AD Connect Hardening provides additional layers to defense in depth approaches. It changes the … Continue reading "HOWTO: Disable Unnecessary Services and Scheduled Tasks on Windows Servers running Azure AD Connect"

The DirTeam.com/ActiveDir.org Weblogs in 2018

Goodbye 2018! As we say goodbye to yet another calendar year, we’re sharing our achievements for the past year. Pageviews and visits Throughout 2018, the DirTeam.com / ActiveDir.org Weblogs served five and a half million pages. To be exact: we saw 5,609,225 pageviews. From a visitor point of view, this results in the following diagram: … Continue reading "The DirTeam.com/ActiveDir.org Weblogs in 2018"

Pictures of Office 365 and SharePoint Connect 2018 in Haarlem last week

After last week’s Heliview People-centric IT event in Rotterdam, I drove to Haarlem for the next event on my list: NC Communications’ Office 365 and SharePoint Connect. Unfortunately, I was too late to pick up Mustafa Toroman and Sasa Kranjac from Amsterdam Airport, but we did arrive at the Amrâth Grand Hotel Frans Hals at … Continue reading "Pictures of Office 365 and SharePoint Connect 2018 in Haarlem last week"

Passing Microsoft Exam 70-742: Identity with Windows Server 2016

There is a good and free way to prepare for Microsoft exam 70-742: Identity with Windows Server 2016. In the past years, I conducted webinars that can serve as a primer on Active Directory in terms of forests, domains, trusts, security and on Group Policy. They are not and were never intended as the sole … Continue reading "Passing Microsoft Exam 70-742: Identity with Windows Server 2016"

Pictures of TechMentor Redmond 2018

Last week, I travelled to Microsoft Campus in Redmond to present at TechMentor. I was kindly invited by Sami Laiho and Dave Kawula, the two chairs of this event, for two identity-related sessions. On Wednesday August 8th, I stepped on a plane towards Seattle Tacoma Airport at Amsterdam Schiphol Airport. Delta gave me a good … Continue reading "Pictures of TechMentor Redmond 2018"

Pro Tip! Use the claim rules from ADFSHelp for your ‘Office 365 Identity Platform’ Relying Party Trust

Whenever I talk about the claim rules in Active Directory Federation Services (AD FS) for the ‘Office 365 Identity Platform’ Relying Party Trust (RPT), between the on-premises AD FS implementation and Azure AD, I get the following question: How do we manually set up the advanced claim rules that Azure AD Connect configures automatically? Let’s … Continue reading "Pro Tip! Use the claim rules from ADFSHelp for your ‘Office 365 Identity Platform’ Relying Party Trust"

Azure AD Connect v1.1.647.0 fixes Common Issues with Sign-In Methods

Last Thursday, Microsoft released version 1.1.647.0 of Azure AD Connect, its free Hybrid Identity bridge product to synchronize objects and their attributes from on-premises Active Directory Domain Services (AD DS) environments to Azure Active Directory. At Microsoft Ignite, Microsoft declared Seamless Single Sign-On and Pass-through Authentication features as Generally Available, so the team doubled down … Continue reading "Azure AD Connect v1.1.647.0 fixes Common Issues with Sign-In Methods"

M	T	W	T	F	S	S
1	2	3	4	5	6	7
8	9	10	11	12	13	14
15	16	17	18	19	20	21
22	23	24	25	26	27	28
29	30