Category Archives: Active Directory

On-premises Microsoft Identity-related updates and fixes for March 2020

Even though Microsoft’s Identity focus moves towards the cloud, they are not forgetting their on-premises roots. Windows Server 2016 and Windows Server 2019 still receive updates. These are the updates and fixes we saw for March 2020:    Windows Server 2016 We observed the following updates for Windows Server 2016: KB4540670 March 10, 2020 The […]

0  

Azure AD Connect v1.5.18.0 brings mS-DS-ConsistencyGUID as source anchor for Groups

Yesterday, a new version of Azure AD Connect was released: version 1.5.18.0. This is the first release in the 1.5.x branch of Azure AD Connect. Azure AD Connect is Microsoft’s free Hybrid Identity bridge product to synchronize objects and their attributes from on-premises Active Directory Domain Services (AD DS) environments and LDAP v3-compatible directories to […]

0  

Explained: User Hard Matching and Soft Matching in Azure AD Connect

In Hybrid Identity implementations, where objects and their attributes are synchronized between on-premises Active Directory environments and Azure AD tenants, integrity is key; When user objects on both sides have different attributes, or exist multiple times at one side, information security drops to critical levels fast. To avoid this situation, Azure AD Connect matches user […]

0  

A closer look at Azure AD Connect’s Service Connection Point

Recent versions of Azure AD Connect deploy a Service Connection Point (SCP) into your Active Directory Domain Services (AD DS) environment(s). Let’s look a bit closer to what this SCP looks like, what it does by default and how you can use and tweak it to your advantage.   About Service Connection Points Active Directory […]

0  

The recording and slides of the Active Directory Best Practices webinar is now available

Last week, I presented two webinars with Veeam’s Andrey Zhelezko, technical product analyst at Veeam Software, on Active Directory Best Practices in terms of administration and disaster recovery. With 1849 and 2217 registered attendees for the European and North American webinar, respectively, these GoToWebinar sessions were solid Active Directory knowledge transfer successes. The recording and […]

0  

On-premises Identity updates & fixes for February 2020

Even though Microsoft’s Identity focus moves towards the cloud, they are not forgetting their on-premises roots. Windows Server 2016 and Windows Server 2019 still receive updates. These are the updates and fixes we saw for February 2020: Windows Server 2016 We observed the following updates for Windows Server 2016: KB4537764 February 11, 2020 The February […]

0  

KnowledgeBase: You receive “The ADSync service failed to start with an unexpected error for AutoGeneratedAccount:” when installing Azure AD Connect

Troubleshooting issues with Azure AD Connect can be a lot of fun, until you realize that new functionality throws an error that is incredibly vague. This blogpost provides the instructions to get Azure AD Connect working for your Hybrid Identity implementation when you receive “The ADSync service failed to start with an unexpected error for […]

0  

HOWTO: Deploy Azure AD Connect with SQL Server

This entry is part 24 of 24 in the series Hardening Hybrid Identity

Most Microsoft-based Hybrid Identity implementations use Active Directory Federation Services (AD FS) Servers, Web Application Proxies and Azure AD Connect installations. In this series, labeled Hardening Hybrid Identity, we’re looking at hardening these implementations, using recommended practices. In this part of the series, we’ll look at the benefits of implementing Azure AD Connect with a […]

0  

I’m presenting two live Active Directory webinars with Veeam’s Andrey Zhelezko

On March 5th 2020, I’m presenting two webinars with Andrey Zhelezko, technical product analyst at Veeam Software, on Active Directory Best Practices in terms of administration and disaster recovery. Active Directory has been around for two decades. This decade, a secure and resilient Active Directory is needed more than ever. AD has been a part […]

2  

Ten things you need to know about Azure AD Connect Cloud Provisioning

Azure AD Connect is Microsoft’s free Hybrid Identity bridge product to synchronize objects and their attributes from on-premises Active Directory Domain Services (AD DS) environments and LDAP v3-compatible directories to Azure Active Directory. On December 5th 2019, Microsoft introduced Azure AD Connect Cloud Provisioning. After playing around with it,’I’m sharing ten things you’ll want to […]

0