Back in July 2019, I wrote a blogpost on managing Active Directory Time Synchronization on VMware vSphere. This blogpost details how to configure time settings for Domain Controllers running as virtual machines on top of VMware vSphere. This blogpost introduced the concept of advanced time synchronization configuration. Now it’s time for an update; both for … Continue reading "VMware vSphere 7.0 Update 1 introduces an interface for advanced time synchronization configuration"
The video of my presentation at the 2020 Hybrid Identity Protection Conference is now available
The Hybrid Identity Protection Conference is Semperis Inc.’s event in the spirit of The Expert Conference (TEC) to bring together the leading experts in the field of Identity and Access Management. The event offers a unique opportunity to spend time with peers, whose day-to-day job is to architect, manage, and protect identity management in the … Continue reading "The video of my presentation at the 2020 Hybrid Identity Protection Conference is now available"
Veeam Backup for Office 365 v5 supports Backup and Restore of Teams and offers Architectural Enhancements
Today, Veeam released Veeam Backup for Microsoft Office 365 version 5.0.0.1061. This is the Release to Manufacturers (RTM) version of Veeam Backup for Microsoft Office 365 v5. What’s New Next to enhanced backup job scheduling, easier collecting and exporting Veeam Explorer log files, the new VMC log and several RESTful API enhancements, here’s what’s … Continue reading "Veeam Backup for Office 365 v5 supports Backup and Restore of Teams and offers Architectural Enhancements"
On-premises Identity-related updates and fixes for November 2020
Even though Microsoft’s Identity focus moves towards the cloud, they are not forgetting their on-premises roots. Windows Server 2016 and Windows Server 2019 still receive updates. These are the Identity-related updates and fixes we saw for November 2020: Windows Server 2016 We observed the following updates for Windows Server 2016: KB4586830 November 10, 2020 The … Continue reading "On-premises Identity-related updates and fixes for November 2020"
What's New in Azure Active Directory for November 2020
Azure Active Directory is Microsoft's Identity Management-as-a-Service solution, offering seamless access, easy collaboration, efficiency in IT processes and improved security and compliance. In its Release Notes for Azure Active Directory, Microsoft communicated the following planned, new and changed functionality for Azure Active Directory for November 2020: What’s Planned Azure Active Directory TLS 1.0, TLS 1.1 … Continue reading "What's New in Azure Active Directory for November 2020"
The video of our presentation at Veeam Live is now available
Veeam organized its Veeam Live event on October 20th, 2020. Veeam is defining the future of cloud data solutions and helping today’s businesses securely and reliably protect and easily recover their data. At Veeam Live, they offered data protection management guidance, showed how to up your data protection game and allowed to connect with like-minded … Continue reading "The video of our presentation at Veeam Live is now available"
Azure AD Connect Provisioning Agent v1.1.281.0 now supports gMSA, PHS Filtering and many other improvements
Earlier this week, Microsoft released version 1.1.281.0 of the Azure AD Connect Provisioning Agent. Azure AD Connect provides provisioning from Active Directory to Azure AD. The Azure AD Connect Provisioning agent can be used alongside Azure AD Connect to: Synchronize disconnected Active Directory forests in a multi-forest environment Simplify the deployment with light-weight provisioning agents, … Continue reading "Azure AD Connect Provisioning Agent v1.1.281.0 now supports gMSA, PHS Filtering and many other improvements"
KnowledgeBase: The WID Service consumes 100% CPU after transitioning AD FS Servers
This week, I encountered unexpected behavior with Active Directory Federation Services (AD FS) on a Windows Server installation that an organization had recently transitioned to from an AD FS server running a previous version of Windows Server. I’m sharing my experiences, so others may benefit from our troubleshooting and solution. The situation Your organization … Continue reading "KnowledgeBase: The WID Service consumes 100% CPU after transitioning AD FS Servers"
TODO: Stream additional logs from Azure AD for optimal visibility
Over the past six months, I’ve shown you ways to get to know the devices that people in your organization use App Passwords on, set an alert to notify when an additional person is assigned the Azure AD Global Administrator role and set an alert to notify when an Azure AD emergency access account is … Continue reading "TODO: Stream additional logs from Azure AD for optimal visibility"
HOWTO: Get rid of the Conditional Access Baseline Policies in your Azure AD tenant
In September 2018, Microsoft introduced the concept of Conditional Access baseline policies. Baseline policies were superseded by Security Defaults, and starting February 2020 the Baseline Conditional Access policies were disabled in all Azure AD tenants. However, these lingering baseline policies are all Off and cannot be turned on. They can also not be removed from … Continue reading "HOWTO: Get rid of the Conditional Access Baseline Policies in your Azure AD tenant"