AD – Troubleshooting replications 2/2
How to Troubleshoot Active Directory Replication Issues In the previous article: https://itworldjd.wordpress.com/2018/04/02/troubleshooting-ad-replications/ we explained all the methodology to...
View ArticleDNS – how to use DIG utility ?
Collection of Web resources about dig usage: http://www.danesparza.net/2011/05/using-the-dig-dns-tool-on-windows-7/ http://anouar.adlani.com/2011/12/useful-dig-command-to-troubleshot-your-domains.html...
View ArticleO365 – how to switch from ADFS federated to Password Sync and vice versa
Introduction A number of organizations use AD FS for SSO capabilities, but all such organizations do not have HA or Site resilience added to AD FS Deployment The Password Sync option can be a great...
View ArticleClik here to view.
Azure AD and AD Password protection
Azure AD password protection is now generally available: https://techcommunity.microsoft.com/t5/Azure-Active-Directory-Identity/Azure-AD-Password-Protection-is-now-generally-available/ba-p/377487...
View ArticleActive Directory – move FSMO roles
When you create a domain, all FSMO roles assigned to the first domain controller in the forest by default. You can transfer FSMO roles from one DC to another both the Active Directory graphics snap-ins...
View ArticleAzure and Office365 resources
Here are resources about Azure and Office365, let me summarize: Office365 : is an offer of MS services and hosted applications – Saas ; in clear you pay for a service (sharepoint,exchange,office…) and...
View ArticleWindows – Desired State Configuration
Overview: https://docs.microsoft.com/en-us/powershell/dsc/overview/overview https://docs.microsoft.com/en-us/powershell/dsc/resources/resources Blog:...
View ArticleAzure AD sync issues
Azure AD Sync issues: https://gallery.technet.microsoft.com/scriptcenter/Common-Azure-AD-Sync-Issues-0f0025e1#content...
View ArticleKerberos delegation in AD
There are three kinds of Kerberos delegation in Active Directory: Unconstrained When a Domain Administrator configures a service’s account to be trusted for unconstrained delegation, that service has...
View ArticleClik here to view.
AD – kerberos – Changes to Ticket-Granting Ticket (TGT) Delegation Across Trusts
Change coming in July 2019 Articles: https://techcommunity.microsoft.com/t5/Core-Infrastructure-and-Security/Changes-to-Ticket-Granting-Ticket-TGT-Delegation-Across-Trusts/ba-p/440261 KB 4490425:...
View ArticleAD – Advanced Threat Analytics (ATA) and Azure ATP
SecOps experience news ! Unified on MCAS, Azure ATP and Azure AD identity protection: Microsoft has three identity-centric security products offering detection capabilities across on-premise and in the...
View ArticleAuthentication Silos and policies
Reference: Need 2012 R2 Domain functional level on the forest to use authentication silos/policies Their are part of the configuration partition (so, at the forest level), replicated on all domain...
View ArticleAzure AD passwordless login in public preview
Microsoft has recently announced the public preview of Azure Active Directory’s passwordless login. This new capability enables your employees to use external security keys to sign into their Azure...
View ArticleIntune with PKI certificates
https://docs.microsoft.com/en-us/intune/certificates-configure https://howtomanagedevices.com/intune/258/intune-certificate-deployment-guide/...
View ArticleActive Directory and Windows – How passwords are stored ?
Reference article: https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/hh994558(v=ws.10)
View ArticleMicrosoft Flow and Azure AD let’s automate
https://blogs.technet.microsoft.com/cbernier/2018/01/16/microsoft-flow-and-azure-ad-lets-automate/
View ArticleCompare AD DS, Azure AD, Azure AD DS
Compare self-managed Active Directory Domain Services, Azure Active Directory, and managed Azure Active Directory Domain Services: To provide applications, services, or devices access to a central...
View ArticleAzure AD custom extensions
How to work with custom extensions: Reference: https://docs.microsoft.com/en-us/powershell/azure/active-directory/using-extension-attributes-sample?view=azureadps-2.0 Examples: # Connect to Azure...
View ArticleOffice 365 security blackhat US 2019
https://adsecurity.org/wp-content/uploads/2019/08/2019-BlackHat-US-Metcalf-Morowczynski-AttackingAndDefendingTheMicrosoftCloud.pdf
View Article