Category Archives: Azure AD Connect

Azure AD Connect v2.0.28.0 addresses four issues

The lost two months have been a bonanza for Azure AD Connect releases. Today, Microsoft released version 2.0.28.0 of Azure AD Connect as a maintenance update for it's free solution to synchronize objects from Active Directory and LDAPv3-compatible identity stores to Azure AD.   What's Fixed Installation on servers with .NET Framework v4.6+ Microsoft addressed […]

0  

Admins that have upgraded to Azure AD Connect v2 are at risk of running out of date and insecure installations

Admins that have bit the bullet on Azure AD Connect v2 are now eating the sour grapes of that decision, as Microsoft doesn't offer Automatic Upgrades on any of the v2 builds released to date. About Azure AD Connect v2 Azure AD Connect is Microsoft’s free Hybrid Identity bridge product to synchronize objects and their […]

0  

Azure AD Connect v2.0.25.1 addresses a security issue and other bugs

The lost two months have been a bonanza for Azure AD Connect releases. What started out with the first v2 release on July 20th, led to a security release three weeks later and two bug fix releases another week later. Now, four weeks after that last release, Azure AD Connect v2.0.25.1 sees the light. It […]

0  

Azure AD Connect v1.x reaches end of support in 1 year

Last week, Microsoft issued a statement on the support of Azure AD Connect version 1.x. It reaches end of support on August 31st, 2022. That is exactly one year from now.   What 'unsupported' means In-place upgrade of Windows Server on an Azure AD Connect server is not supported. While you might pull it off, […]

0  

Azure AD Connect v1.6.13.0 and v2.0.10.0 solve a PHS issue in renamed Active Directory forests

Azure AD Connect has seen its share of new releases in the last weeks, following a security issue and an issue with Password Hash Synchronization (PHS) transactions for a large number of users (v2 only). Yesterday, Microsoft's free Identity synchronization solution saw another two new releases addressing an issue with Password Hash Synchronization (PHS) in […]

0  

Azure AD Connect v2.0.9.0 fixes a Password Hash Synchronization bug

Yesterday, a mere week after the release of Azure AD Connect version 2.0.8.0, a security release for the 2.0 branch, Microsoft has released version 2.0.9.0, fixing a bug in the 2.0.3.0 en 2.0.8.0 releases.   What's fixed This release addresses an issue where, when syncing a large number of Password Hash Synchronization (PHS) transactions, the […]

0  

How to check if Azure AD has processed the hybrid authentication method change

Many organizations with Azure AD tenant are currently transitioning from federation to Pass-through Authentication (PTA) and/or authentication based on Password Hash Synchronization (PHS). The Staged Roll-out feature is a straight-forward way to perform this transition. Microsoft has described how to migrate from federation to cloud authentication in Azure Active Directory using this feature. Note: In […]

0  

Version 1.1.582.0 of the Azure AD Connect Provisioning Agent prevents MitM attacks towards Domain Controllers (CVE-2021-36949)

This weekend, Microsoft released a new version of the Azure AD Connect Provisioning Agent. Version 1.1.582.0 addresses an authentication bypass vulnerability that is present in all previous versions of the agent. About the vulnerability An attacker can successfully perform a Meddle-in-the-Middle (MitM) attack between Windows Server installations running Azure AD Connect Provisioning Agents and Active […]

0  

Two new Azure AD Connect versions were released to prevent MitM attacks towards Domain Controllers (CVE-2021-36949)

Today, Microsoft released two new Azure AD Connect version to address an authentication bypass vulnerability in Azure AD Connect.   About the vulnerability An attacker can successfully perform a Meddle-in-the-Middle (MitM) attack between Azure AD Connect server(s) and Active Directory Domain Controller(s). The attacker would merely need to possess domain user credentials to be able […]

0  

KnowledgeBase: In-placing upgrading Windows Server for an Azure AD Connect installation is not supported

With the release of Azure AD Connect v2, many Hybrid Identity admins find themselves with Windows Server 2012 and Windows Server 2012 R2 installations with Azure AD Connect v1 installations. As Azure AD Connect v2 does not support installation on these Operating Systems, Microsoft urges these admins to perform an Azure AD Connect swing migration. […]

0