Category Archives: Active Directory
Azure AD Connect 1.1.561.0 finalizes Automatic Upgrade scenario changes and the move to mS-DS-ConsistencyGuid
Yesterday, Microsoft released version 1,1.561.0 of Azure AD Connect, its free Hybrid Identity bridge product to synchronize objects and their attributes from on-premises Active Directory Domain Services (AD DS) environments to Azure Active Directory. This version is hot on the heels of version 1.1.557.0, because it features some fixes for organization who recently made the […]
Top Five reasons why Identity Admins should look at Windows Server Insider Preview Build 16237
Yesterday, Microsoft made Windows Server Insider Preview Build 16237 available to the Windows Insiders and Windows Insiders for Business programs. This is the first preview build of the Redstone 3 (RS3) release of Windows Server vNext. I’ve looked at this release, and as an Identity Admin, I feel this build has a lot to offer. […]
Security Thoughts: Vulnerability in NTLM Credentials Forwarding with LDAPS could allow Elevation of Privilege (CVE-2017-8563, Important)
Last Tuesday, during Microsoft’s July 2017 Patch Tuesday, Microsoft released a security update for all supported Operating Systems to address an elevation of privilege vulnerability that exists when Kerberos falls back to NT LAN Manager (NTLM) Authentication Protocol as the default authentication protocol. About the vulnerability In a remote attack scenario, an attacker could […]
Azure AD Connect: objectGUID vs. mS-DS-ConsistencyGuid, Part 1
The Azure AD Connect Team has decided to move Azure AD Connect’s default source anchor attribute in on-premises Active Directory Domain Services (AD DS) environments from objectGUID to mS-DS-ConsistencyGuid for user objects in Azure AD Connect version 1.1.553.0, and up. When you’ve been using Azure AD Connect to synchronize objects between your on-premises Active Directory […]
Azure AD Connect 1.1.557.0 is good news for highly-regulated and highly-secure organizations
Microsoft released version 1.1.557.0 yesterday, hot on the heels of last week’s important 1.1.553.0 release that for the first time fixed a critical security issue in Azure AD Connect. With new features for Azure Government cloud and Azure Germany available in this release, and PTA not automatically enabling PHS, this release is particularly appealing to […]
Azure AD Connect v1.1.553.0 addresses a critical security vulnerability … and offers new functionality, too
Yesterday, Microsoft released a new version of Azure AD Connect, its free tool to synchronize objects from your on-premises Active Directory Domain Services environment to Azure Active Directory. It addresses a critical security vulnerability, but also offers new functionality, like delegate write-back from Exchange Online to Exchange Server on-premises., Vulnerability could allow Elevation of […]
Azure AD Connect 1.1.524.0 brings a ton of new functionality to Hybrid Identity
Microsoft released a new version of its Azure AD Connect tool earlier this week (May 15) dubbed the May 2017 release. This is the big release, a lot of us have been hoping for, because it brings a ton of new functionality. Personally, this release solves one of my ten biggest pains with Azure AD […]
Pictures of the April 2017 IT Pro User Group at Microsoft Hrvatska in Zagreb
Last April, I was invited by the Microsoft IT Pro User Group to present a 75 minute session on Azure AD Join at Microsoft Croatia’s Headquarters in Zagreb. Since I was spending some time in the region between Microsoft Bosnia and Hergovina’s Network event and the Croatian WinDays, I had no trouble finding the place. […]
Azure AD Connect versions 1.1.484.0 and 1.1.486.0 offer great enhancements
Last Friday, Microsoft has released version 1.1.486.0 of its free Hybrid Identity bridge software product: Azure AD Connect. Together with the changes of the short-lived 1.1.484.0 version of this tool, many admins should get big smiles on their faces from the many enhancements made What’s New Azure AD Connect sync Azure AD Connect Sync […]
Whitepaper: What’s New in Active Directory Domain Services since Windows Server 2008 R2
The last couple of months, I have actively worked together with Veeam to profile their excellent Veeam Explorer for Active Directory and to help people get more out of their current investments in on-premises Active Directory Domain Services. One of the projects we’ve worked on is a whitepaper that details what’s new in Active Directory […]
Login