I’ll be speaking at ITPROceed 2016

SpeakingThree years ago, Adnan Hendricks and I attended the Belgian Community Day. Since then, this event has transformed into IT PROceed. Last year, at the second edition of ITPROceed, I presented on the Ten most common mistakes when deploying AD FS and Hybrid Identity in the Transform the Datacenter track. This year, I’m invited back as a speaker.


About ITPROceed

ITPROceed 2016ITPROceed is the technology geek fest for IT Professionals in Belgium on Microsoft technologies, tools, platforms and services.

This one day event will be your one-stop for all your questions regarding new technologies and how they will become more and more important for you as an IT Professional and your customers. The day will be packed with sessions about the new technologies and how you can implement and use them in your day to day business as an IT Pro. These sessions will be packed with notes from the field and delivered by top notch speakers who earn their stripes daily by delivering solutions build on these technologies.

ITPROceed is a joint effort between the IT Professional User Groups with strong support from Microsoft. Their mission? Delivering you content throughout the year about the technologies they represent and work with. ITPROceed is the pinnacle for the user groups to have an open forum to all attending IT Pros to show what their technology is capable of and how it is evolving in the faster and faster changing IT Pro world we live in today.


About my session

I will be presenting one session in the Enterprise Mobility track:

Azure Active Directory Join for Windows 10 Bring-your-Own scenarios

2:20PM – 3:10PM

Windows 10 brings a huge flow of continuous change to the paradigm of joining devices to a trusted environment. How does the virtualization of the join change the security thoughts that we got so used to over the past decade? What happens to Single Sign-On and management of the workplace? Where are the new boundaries of the virtualized territory? How did Windows 10 turn the tables?

You’ll be surprised by the new opportunities! Join this session to learn about the new features that Windows 10 and Azure bring to your Bring-Your-Own, Choose-Your-Own, yet Manage-all processes.


Will I see you there? Glimlach
Registration is free.


Related blogposts

Pictures of ITPROceed 2015 
I’ll be speaking at ITPROceed 2015 
Pictures of the Belgian 2013 Community Day


I’m hosting a ‘Minimalism in Windows Server’ event with Jeff Wouters and Ajilon

When I started my speaking career back in 2006, I didn’t have fancy demo hardware and Azure Infrastructure-as-a-Service (IaaS) wasn’t even born, then. To talk about an interesting IT Pro topic and provide appealing demos, I choose to talk about Server Core.

On May 25, I’m coming full circle. While I’ve been demoing Azure Active Directory and Hybrid Identity these past few years (on demo hardware graciously provided by employers and on Azure IaaS), I’ll be presenting on Server Core again.


About the ‘Minimalism in Windows Server’ event

Jeff Wouters and I will be hosting an evening event, celebrating the efforts of great people like Andrew Mason, Jeffrey Snover and Benjamin Herila at Microsoft.

Part 1: Server Core

With Windows Server becoming more bloated with every release, many IT Pros became envious of Open Source Operating Systems and their modular ways. With Windows Server 2008, Microsoft introduced the Server Core installation option; an optimized Windows Server mode without many of the bloatware features of Full Installations of Windows Server.

Many years and Windows Server versions, Server Core has evolved into the Windows Server 2012 R2 Operating System mode it is today. I will be telling this story and demo various versions of Server Core along the way. Besides all the evolutions, I’ll also detail much of the real-world impossibilities associated with Server Core installations, even today.

Part 2: Nano Server

Server Core basically is an optimized Windows Server version. What if Microsoft could start over with a Windows Server? Instead of removing the unnecessary parts, adding only the necessary parts to a bare-bones install? This is what Microsoft does with Nano Server, a new Operating System mode in Windows Server 2016. Jeff will tell the audience all about it and how it ties together with PowerShell and containers.


At the end of the evening, our audience will have intimate knowledge of one of the most important trends in Microsoft infrastructure for years to come! Glimlach


About Ajilon IT

AjilonAjilon IT is a Dutch Human Resources organization that connects IT professionals with organizations. They are not just an IT staffer, but also an employer, with heart for its professionals. Ajilon is part of Staffing within Adecco Group Nederland.


Join us

Ajilon hosts our event at Leerhotel Het Klooster in Amersfoort, the Netherlands Dutch.

Leerhotel Het Klooster

Ajilon invites many of the professionals they employ and many of the professionals that work through them. Of course, Jeff and I were also welcome to invite people and there’s plenty of room at the venue.

You are invited! Glimlach

Register here for this free event.
Presentations will be delivered in Dutch.


Azure AD Connect version is here

Azure AD ConnectThe Azure Active Directory team keeps churning out monthly builds of our favorite tool to connect our on-premises Windows Server Active Directory Domain Services environment(s) to Azure Active Directory.

Version of Azure AD Connect, dated May 12, 2016, adds support for two of the newer legal boundaries of Azure Active Directory, as well as a slew of fixes and improvements:


New features

Verifying domains

Normally, when you want to use federated login with Azure AD Connect, Azure Active Directory and Active Driectory Federation Services (AD FS), you would need to specify the publicly routable DNS domain names with Azure Active Directory, before you start the wizard. This way, when you start federations, you would actually have userPrincipalName (UPN) suffixes is to convert to federated domains, next to the default tenantname.onmicrosoft.com userPrincipalName (UPN) Suffix.

Azure AD Connect will warn you and help you in verifying DNS domains in Azure Active Directory if you didn’t do it before running Azure AD Connect.

Of course, if you need help in determining the userPrincipleName (UPN) Suffixes to specify, take a look at my method for checking Orphaned UPN Suffixes.


Support for Microsoft Cloud Germany

The Microsoft Cloud Germany is a sovereign cloud operated by T-Systems, Microsofts German data trustee.

Microsoft Cloud Germany

Data in Cloud Germany is solely stored in the two German datacenters (in Frankfurt am Main and Magdeburg) and this cloud variant is compliant with the demands of the European Commission for Public Cloud services.

When Microsoft announced Cloud Germany in November and made it available in March, Azure AD Connect lacked support for it. Version of Azure AD Connect now has support for Microsoft Cloud Germany.


Support for Microsoft Government Cloud

The Microsoft Azure Government cloud is a cloud for US government.
This cloud has been supported by earlier releases of DirSync, but support from Microsoft on DirSync, Azure AD Sync and earlier versions of Azure AD Connect will end on April 17, 2017.

Starting with version 1.1.180 of Azure AD Connect, the next generation of the Microsoft Azure Government Cloud is supported. This generation is using US-only based endpoints and have a different list of URLs to open in your proxy server.

Azure AD Connect will not be able to automatically detect that your Azure AD directory is located in the Government cloud. Instead you need to take the following actions when you install Azure AD Connect:

  1. Start the Azure AD Connect installation.
  2. As soon as you see the first page where you are supposed to accept the End-user License Agreement (EULA), do not continue but leave the installation wizard running.
  3. Start regedit.exe and change the registry key HKLM\SOFTWARE\Microsoft\Azure AD Connect\AzureInstance to the value 2.
  4. Go back to the Azure AD Connect installation wizard, accept the End-user License Agreement (EULA) and continue. During installation, make sure to use the custom configuration installation path (and not Express installation). Then continue the installation as usual.

The following features are currently not present in the Microsoft Azure Government cloud with Azure AD Connect:

  • Azure AD Connect Health is not available.
  • Automatic updates is not available.
  • Password write-back is not available.


Fixed issues and improvements

The Azure Active Directory team made the following fixes and improvements in version of Azure AD Connect:

  • Added filtering to the Sync Rule Editor to make it easy to find sync rules.
  • Improved performance when deleting a connector space.
  • Fixed an issues when the same object was both deleted and added in the same run (called delete/add).
  • A disabled Sync Rule will no longer re-enable included objects and attributes on upgrade or directory schema refresh.


Version information

This is version of Azure AD Connect.


Download information

You can download Azure AD Connect here.
The download weighs 74,5 MB.



If the Automatic Updating functionality  hasn’t already upgraded your Azure AD Connect installation to version, you can download and install this version of Azure AD Connect above.

Further reading

Azure AD Connect version offers new functionality
Azure AD Connect version
Azure AD Connect 1.0.9131 is here
A new version of Azure AD Connect was released today
Default checks when implementing Hybrid Identity, Part 2: Orphaned UPN Suffixes
DirSync and Azure AD Sync will reach End of Support on April 13, 2017


Tip! Use the Azure AD Connect Configuration Documenter

As an identity consultant, these last few years I have been tasked with several hybrid identity projects involving Azure Active Directory. Azure AD Connect is the tool of choice for many of these projects. Its many features in the latest versions alleviate many of the headaches of these implementations, but some headaches remain.

One of the biggest hurdles in troubleshooting Azure AD Connect is getting an overview of the Azure AD Connect configuration. Another big ask from my customers is to get an understanding of the changes in the configuration after each Azure AD Connect (automatic) upgrade.

The Azure AD Connect Configuration Documenter helps in these cases.


About the Azure AD Connect Configuration Documenter

The Azure AD Connect Configuration Documenter is a free* tool from Microsoft to generate documentation of an Azure AD Connect installation, based on an exported server configuration.

Currently, the documentation is only limited to the Azure AD Connect Sync configuration.

The goal of the Azure AD Connect Configuration Documenter is:

  • To enable quick understanding of the synchronization configuration and “how it happens”.
  • To build confidence in getting things right when making changes to the default configuration.
  • To know what was changed when you applied a new build / configuration of Azure AD Connect or added/updated custom sync rules

The tool was released to GitHub as version 1.15.1030.0 by Microsoft employees Nilesh Ghodekar and Jef Kazimer on May 3, 2016.


Your Azure AD Sync Documenter Report

The Azure AD Connect Configuration Documenter will produce a HTML-based report in the report sub folder after it goes through the exported configuration:

Your Azure AD Connect Configuration Documenter Report in Internet Explorer (click for original screenshot)



You can download the Azure AD Connect Configuration Documenter on GitHub here:

* The Azure AD Connect Configuration Documenter is released under the MIT license.


Pictures of WinDays 16 in Porec, Croatia

I’ve spent the last few days in the beautiful Istrian coast city of Poreč in Croatia (also known as Parenzo in Italian) with my Balkan friends and community members for the WinDays 16 event. I was a speaker for WinDays XV in 2015 in Umag and was really looking forward to this event as it is just a wonderful event in beautiful locations with fantastic speakers.

The venue this year for WinDays was the Valamar Isabella Island Resort on Sveti Nikola Island off the coast of Poreč, looking out over the Adriatic See on one side and of Poreč from the other side. I drove with Romeo Mlinar and Aleksandar Nikolic from Zagreb to Poreč and was just amazed with the views, the castle from 1887 and the lighthouse dating back to 1403:

View on the Porec Palazzo (click for larger photo, shot by Aleksandar Nikolic)
The Valamar Infinity Pool (click for larger photo)The Castle on Sveti Nikola Island (click for larger photo)
The Valamar Isabelle Island Resort (click for larger photo)

We didn’t have much time, because roughly the moment we got off the ferry, Microsoft released Windows Server 2016 Technology Preview 5. Needless to say, Aleksandar and I went to our room, downloaded the bits and started incorporating the new build in our Windows presentations…

The lighthouse on Sveti Nikola Island (click for larger photo)WinDays 16 Speaker Badge (click for larger photo)The Castle on Sveti Nikola Island (click for larger photo)

The first presentation on the schedule was the 9:30 AM 45-minute session in room Momenti 4 on ‘Hybrid Identity in 4 steps with Azure AD Connect’:

Hybrid Identity in 4 steps Title Slide (click for larger photo)
Explaining how we came to have Azure AD Connect (click for larger photo)Posing for a new Speaker Avatar (click for larger photo)

This was the session before the WinDays Technology Keynote, so we stayed in the room while it filled with the roughly 1000 attendees.

We enjoyed some more sessions, before we went back to the hotel to relax a bit and make the final tweaks to Aleksandar’s 9:30 AM session on Friday and my 12:15 PM session.

At 12:15 it was time for my introduction session to Azure Active Directory for Active Directory admins. The WinDays organizers asked me to deliver this session, and asked me to condense it to 30 minutes, so they could fit it in the prestigious Castle 6 room.

View from outside on Castle 6 (click for larger photo, courtesy of WinDays Event)Presenting on Azure AD Connect's Express Settings (click for larger photo, courtesy of WinDays Event)

Room Castle 6 was an awesome and intimate room with nice chandeliers, an impressive mirror and only 50 seats, for those who made it in time to grab one.

I explained how to embrace Azure Active Directory from an on-premises point of view, achieving Single Sign-on and Multi-factor Authentication with ease, as well as embracing Active Directory from the cloud using the Operations Management Suite (OMS) with its assessments and incredibly rich monitoring and reporting capabilities.

After our sessions, it was time for some leisure, so Aleksandar and I decided to take a swim in the hotel pool.

Swimmer Speakers (photo by Romeo Mlinar)

I enjoyed my time in Croatia and would like to thank all of you who attended my sessions. It’s back to work for me, but the memories of these last two weeks will stay with me for a long time.

Thank you! Glimlach


I will be delivering 9 Identity webinars for Microsofts Partner University this May

Webinar on Enterprise Mobility Suite

A while ago, I was contacted to to present online webinars to explain the Enterprise Mobility Suite (EMS) for Microsofts Partner University.

For this series of fifteen webinars, I was selected as the speaker for the first three sessions in three different timeslots, accommodating the Asia Pacific, Europe and Americas regions using the EventBuilder platform:


Modern Day threat to security – an Identity perspective

The Target breach learns us that our old security thinking in terms of firewalls and perimeter networks no longer suffices in the modern world. While you’d expect attackers to use malware and C&C channels, during the Target breach, most of the times, the tools to manage the infrastructure were used and allowed the attackers to hide in plain sight. The only way forward is to use identity as the control pane. Microsofts Enterprise Mobility Suite (EMS) offers the identity and access solutions, information protection and mobile device and application management solutions needed to face these modern day threats.

May 5, 2016 7 AM – 8:30 PM GMT Register 
May 5, 2016 11:30 AM – 1 PM GMT Register  
May 5, 2016 3 PM – 4:30 PM GMT Register 


Implementing a secure hybrid identity solution

While the current IT landscape, including both on-premises and mobile devices, accessing both on-premises and cloud resources, may at first appear daunting, Microsoft offers solutions and technologies to manage identity to help IT departments gain insights and control and empower their end-users with Single Sign-On (SSO). This session explains how IT admin can use the power of Azure AD Premium subscriptions, Azure AD Cloud App Discovery, Azure AD Connect and Active Directory Federation Services (AD FS) to achieve these goals. 

May 6, 2016 7 AM – 8:30 PM GMT Register 
May 6, 2016 11:30 AM – 1 PM GMT Register  
May 6, 2016 3 PM – 4:30 PM GMT Register


Unlock unlimited possibilities with cloud identity

This session shows why Identity is the core of Enterprise Mobility. We dive deep into Azure Active Directory Premium and demo its Single Sign-On, Self-service password reset (SSPR), Self-service application request and Azure Multi-factor Authentication (MFA) functionality, as well as Azure AD Premium’s rich security reports. Other notable features that we’ll discuss in depth in this session include the Azure AD Application Proxy, Azure AD Identity Protection, Azure AD Domain Services, Azure AD Join for Windows 10 and Conditional Access.

May 12, 2016 7 AM – 8:30 PM GMT Register 
May 12, 2016 11:30 AM – 1 PM GMT Register  
May 12, 2016 3 PM – 4:30 PM GMT Register


These webinars are free and you can register for any one of them.
Recordings will not be made available.

Join me! Glimlach


Windows Server 2016 Technical Preview 5 build 14300 is available

Windows Server 2016 Technical Preview 5

At the heart of the Microsoft Cloud Platform, Windows Server brings Microsoft’s experience delivering global-scale cloud services into your infrastructure. Windows Server 2016 Technical Preview 5 provides a wide range of new and enhanced features and capabilities spanning server virtualization, storage, software-defined networking, server management and automation, web and application platform, access and information protection, virtual desktop infrastructure, and more.



TechNet Evaluation Center

If you’re interested in test driving the latest version of Windows Server 2016, you’ll be happy to know that Technical Preview 5 is now available on the Microsoft TechNet Evaluation Center.

You can choose between two downloads:

  1. The ISO file for Windows Server 2016 Technical Preview 5 Standard and Datacenter
  2. The VHD file for Nano Server Technical Preview 5

MSDN Subscription

If you have a MSDN subscription, four Technical Preview 5 downloads await you:

  1. Windows Server 2016 Technical Preview 5 (x64) – DVD
    4959 MB
  2. Windows Server 2016 Technical Preview 5 Language Pack (x64) – DVD
    1081 MB
  3. Windows Server 2016 Technical Preview 5 Symbols (x64)en_windows_server_2016_technical_preview_5_symbols_x64_8519429.msi
    810 MB
  4. Windows Server 2016 Essentials Technical Preview 5 (x64) – DVD
    4336 MB



Choose Standard or Datacenter edition, depending on the features you need:

Windows Server 2016 Standard

Windows Server 2016 Standard offers:

  • Up to 2 VM’s or Hyper-V containers
  • Unlimited Windows containers
  • New Nano Server deployment option for "just enough OS"

Windows Server 2016 Datacenter

Windows Server 2016 Datacenter offers:

  • Unlimited VM’s and Hyper-V containers
  • Unlimited Windows containers
  • New Nano Server deployment option for "just enough OS"
  • Shielded VM’s and Host Guardian Service
  • Storage features, including Storage Spaces Direct and Storage Replica
  • New networking stack

Nano Server

Windows Server 2016 Technical Preview 5 offers a new installation option: Nano Server. It is a remotely managed option similar to Windows Server in Server Core mode, but significantly smaller, has no local logon capability, and only supports 64-bit applications, tools, and agents. It takes up far less disk space, sets up significantly faster, and requires far fewer updates and restarts than Windows Server with the full desktop experience.

See Getting Started with Nano Server for full details.



Available languages for Windows Server 2016 Technical Preview 5 are:

  • Chinese (Simplified)
  • Chinese (Traditional)
  • Czech
  • Dutch (Netherlands)
  • English
  • French
  • German
  • Hungarian
  • Italian
  • Japanese
  • Korean
  • Polish
  • Portuguese (Brazil)
  • Portuguese (Portugal)
  • Russian
  • Spanish
  • Swedish (Sweden)
  • Turkish



The buildstring for Windows Server 2016 Technical Preview 5 is version 10.0.14300.1010.rs1_release_svc.160415-2143


Preview Disclaimer

As a reminder, these are early pre-release builds. Many of the features and scenarios are still in development. As such, these builds are not intended for production environments, labs, nor full evaluations. This is pre-released software; features and functionality may differ in the final release. 


DirSync and Azure AD Sync will reach End of Support on April 13, 2017

In an e-mail message from the Azure Team, many of us got a notice that the 64-bit Windows Azure Active Directory Sync (DirSync) tool and the stand-alone Azure AD Sync tool are both deprecated and will reach end of support on April 13, 2017.

As the Azure team described it:

These older tools have been replaced with a single solution that is available for all scenarios: Azure AD Connect. It offers new functionality, feature enhancements, and support for new scenarios. To be able to continue to synchronize your on-premises identity data to Azure AD and Office 365, we strongly recommend that you upgrade to Azure AD Connect.

The 32-bit version of DirSync has been deprecated since January 1, 2013.

Microsoft also issued an official page on the deprecation notice.


What solutions are being deprecated?


The Windows Azure Active Directory Sync (DirSync) tool was Microsofts first tool to make it possible for organization to synchronize user accounts and groups between their on-premises Active Directory Domain Services (AD DS) environments and Azure Active Directory. Its most appealing use was to synchronize these objects for Office 365, Microsofts cloud productivity suite that uses Azure Active Directory as its identity store.

DirSync was aimed at organization with a single Active Directory forest.
Version 7022.000 is the last release of DirSync, dating back to July 31, 2014.

Azure AD Sync

The stand-alone Azure AD Sync tool was introduced in late 2014 and its last release dates back to May 2015 (version 1.0.494.0501). Its goal was identical to DirSync: to synchronize objects between on-premises Active Directory Domain Services environments and Azure Active Directory.

However, Azure AD Sync was aimed at organizations with multiple Active Directory forests and other advanced scenarios. The Azure AD Sync tool, however, didn’t offer the same breadth of functionality as DirSync did.

Azure AD Sync was folded into Azure AD Connect, when Azure AD Connect became Generally Available (GA) as version 1.0.8641.0 in June 2015.


About Azure AD Connect

Azure Active Directory Connect is the new ‘umbrella’ product to achieve Hybrid Identity.

Unlike the DirSync and Azure AD Sync tools, Azure Active Directory offers an implementation wizard for every aspect of Hybrid Identity in both single and multi-forest environments. Since version 1.1, Azure AD Connect also supports 3rd party LDAP directories.

When used together with Azure AD Premium and/or Enterprise Mobility Suite (EMS) licenses, Azure AD Connect supports password write-back, group write-back, device write-back and directory extensions.

The latest version of Azure AD Connect, currently, is version, released on April 12, 2016.


Call to Action

When you have either the DirSync tool, the Azure AD Sync tool or a version of Azure AD Connect below 1.1.x deployed for your Azure Active Directory synchronization needs, you are strongly urged to plan to migrate to Azure AD Connect version or up.

The FAQ on the deprecation of DirSync and the stand-alone Azure AD Sync tool, additionally, hints at a future deprecation of the Windows Azure Active Directory Connector for FIM.

Further reading

Edugeek – DirSync/Azure AD Sync – End of Support 2017 
Notice! Deprecation of Windows Azure Active Directory Sync (DirSync), Azure AD Sync 
Office 365 ends support for the 32-bit DirSync tool on January 1, 2013


Pictures of the Microsoft Community event at Microsoft Hrvatska in Zagreb

The Croatian IT Pro User Group asked me to present a 75-minute session on the ‘Ten most common Mistakes with AD FS and Hybrid Identity’ at Microsoft Hrvatska in Zagreb yesterday.

This event was shared with the Croatian IT Pros on the Microsoft Community website, and 56 people decided to sign up for the meeting, even though I presented the session in English (Until recently, English wasn’t taught in schools, in favor of German and Russian) and the session date didn’t fall in the regular schedule for the IT Pro User group. (Normally, they meet every first Tuesday of the month.)

Microsoft Hrvatska in Zagreb (click for larger photo)

We were early at Microsoft Hrvatska to avoid rush hour and enjoyed a nice cup of coffee downstairs, before we went to the 6th floor that Microsoft rents in the building.

We went upstairs to prepare and people started pouring in. At around 5:35PM, Romeo Mlinar provided a short introduction in Croatian. After that I presented up to 7:05PM.

Titel Slide (click for larger photo)Making fun of Romeo's Windows Phone (click for larger photo)Presenting while walking (click for original photo by Romeo Mlinar)
The audience for last night (click for larger photo by Romeo Mlinar)NTLM Brrrr... (click for larger photo, by Goran Zarinac)

As a group, we enjoyed pizza after the session and then went to the other side of the street to Caffe Eter to enjoy a beer. I had some good conversations and the general feedback I got was that it was a good session.

 A Dutch Guy enjoying a German Beer in Croatia (click for larger photo)

Cheers! Glimlach 


Further reading

I will be speaking at Microsoft NetWork 6 in Neum, Bosnia and Herzegovina 
I’ll be speaking at Microsoft Hrvatska for IT Pro User Group Zagreb on April 21 
I will be presenting at WinDays 16 in Porec


Pictures of Microsoft Network 6

As I mentioned last week, I was invited as a speaker for the Microsoft Network 6 event in Neum, Bosnia and Herzegovina.

The venue for this event is the Grand Hotel Neum, which is a great hotel with superb conference rooms. Combined with Microsofts great staff and the absolutely delightful weather, speakers and attendees, this made for a really enjoyable experience:

The Grand Hotel Neum (click for larger photo)
The balcony outside the Hotel Lobby (picture by Dijana)View from the balcony of the Grand Hotel Neum (click for larger photo)

I flew from Amsterdam to Zagreb via Paris with Air France and Croatia Air. Then, from Zagreb, Romeo Mlinar drove to Neum, showing me lots of interesting sites on our way down.

When we arrived, we registered and met up with everyone:

My Network 6 Speaker Badge (click for larger photo)Discussing technology with friends :-) (click for larger photo)

We watched the Network 6 Keynote from the lobby and then got some dinner. I shared a room with Romeo, and we went to the room early to get a good night’s rest.

The next day, I attended several sessions. I attended Thomas Maurer’s session on ‘What’s New in Hyper-V in Windows Server 2016’, John Craddock’s session on ‘What’s New in Identity in Windows Server 2016’, Andy Malone’s session on ‘Forensics and eDiscovery Internals’ and Slavko Kukrika’s session on ‘Windows 10 i Azure AD’. That last session was in Serbian, but I could actually follow the session, due to the English slides ansd Slavko’s excellent presentation skills.

John Craddock presenting the new AD FS features in Windows Server 2016 (click for larger photo)Slavko's excellent slide on the differences between Active Directory and Azure Active Directory (click for larger photo)Andy presenting in the Cinema Room (click for larger photo)

After a day, filled with sessions, it was time for dinner. John, Andy and I joined Martina Grom, Toni Pohl, Sasha Kranjac and Adis Jugo at Restoran Laguna, where we enjoyed large plates filled with meat, fish and shellfish, along with some really nice housewines.

We took a peek at the Network party, but I decided it wasn’t for me, because I was scheduled to present the 9AM session the next day in the cinema room (kino sala):

Grand Hotel Neum's Kino Sala (click for larger photo, by Andy Malone)Presenting (click for larger photo, by Andy Malone)
Presenting (click for larger photo, by Romeo Mlinar)

My 45-minute session on the ‘Ten most common Mistakes with AD FS and Hybrid Identity’ was a lot of fun, and I managed to give some really solid handles to the underlying technologies and actual implementations to the audience. I received some great reviews after the session.

We had to clear the hotel room before 11AM, so this was our top priority after the session, which is a shame, because I couldn’t attend the sessions in the 10AM –10:45AM time slot. Luckily, we met up for pizza at 2PM, so John could fill me in on his opinion on the Azure App Proxy.

After lunch, Romeo and I said ‘Bok!’ to Neum and headed back to Zagreb, but not without enjoying the view of Skradin on our way over.

The city of Skradin (click for larger photo)


I love this country! Glimlach  


Further reading

I will be speaking at Microsoft NetWork 6 in Neum, Bosnia and Herzegovina  
I will be presenting at WinDays 16 in Porec 
I’ll be speaking at Microsoft Hrvatska for IT Pro User Group Zagreb on April 21 
Pictures of WinDays XV 
I’ll be speaking at WinDays Croatia 15