Category Archives: Uncategorized

If you are unfamiliar with Microsoft Entra ID (formerly Azure Active Directory) and enterprise app security, you should take steps to change that. Application governance is complex, so its intricacies and importance tend to be overlooked when organizations first create a cloud security strategy. However, failing to properly secure and monitor Entra ID can result […]

On November 9th, 2023, Microsoft released version 8.1.10.1 of its Azure MFA Server product that allows organization to add multi-factor authentication to RADIUS-, AD FS-, IIS-based and other on-premises authentication scenarios.   What’s New The release notes mention one change: Fix for crashes during activation Version 8.1.10.1 addresses an issue that caused the main Azure […]

Microsoft Defender for Identity helps Active Directory admins defend against advanced persistent threats (APTs) targeting their Active Directory Domain Services infrastructures. It is a cloud-based service, where agents on Domain Controllers provide signals to Microsoft's Machine Learning (ML) algorithms to detect and report on attacks. Its dashboard allows Active Directory, AD FS, and Certification Authority […]

Entra ID, previously known as Azure AD is Microsoft's Identity Management-as-a-Service solution, offering seamless access, easy collaboration, efficiency in IT processes and improved security and compliance. In its Release Notes for Entra ID and through the Microsoft 365 Message Center, Microsoft communicated the following planned, new and changed functionality for Entra ID for August 2023:   […]

I have worked together with ENow software to develop the Active Directory Security Playbook for 2023.   Based on my Cookbook recipes The Playbook includes five of the recipes from my Active Directory Administration Cookbook: Proven Solutions to Everyday Identity and Authentication Challenges for Both On-Premises and the Cloud. It also includes a sixth, brand […]

Two events, 4.600 miles and six time zones apart, and 18 hours to get from one to the other. It's not undoable, but when thunderstorms only allow the use of one runway for both arriving and departing flights at Miami International Airport (MIA), a fellow passenger decides to smoke in the toilet forcing the captain […]

I attended this year's VeeamON event in Miami last month, after being invited as a Veeam Vanguard to speak. I flew in on Miami International airport (MIA) via Hartsfield–Jackson Atlanta International Airport on Sunday with KLM and had an uneventful flight (which are the best flights), arriving at the FontaineBleau hotel around four PM. By that […]

This week, on its Patch Tuesday for March 2023, Microsoft released a patch that addresses a highly critical vulnerability (CVE-2023-23392) in the HTTP Protocol Stack.   About the vulnerability CVE-2023-23392 details a remote code execution vulnerability that can be used to attack AD FS servers over the internet. An unauthenticated attacker could send a specially crafted packet […]

I’m proud to announce that I will be co-presenting a webinar with Netwrix’ Dirk Schrader on Tuesday February 21st, 2023 at 8PM CET (UTC+1) on preventing attacks against Active Directory using Entra and Netwrix technologies.   About the webinar Active Directory controls access to critical systems and data for organizations around the world, but it […]

On November 11th, 2022, Microsoft released version 8.1.3.1 of its Azure MFA Server product that allows organization to add multi-factor authentication to RADIUS-, AD FS-, IIS-based and other on-premises authentication scenarios.   What’s New The release notes mention the following changes: Seamless Upgrades Azure MFA Server 8.1.3 introduces functionality to eliminate downtime when upgrading to […]