The HIP Conference: DEC Updated for the Hybrid Identity Era

If you ask any identity professional that’s been involved with Microsoft identity for more than 10 years, you can pretty much assume they’ve heard of DEC: The Directory Experts Conference. Known in its later years as TEC (The Expert’s Conference) when it expanded to include a few other Microsoft products such as SharePoint and Exchange, … Continue reading The HIP Conference: DEC Updated for the Hybrid Identity Era → The post The HIP Conference: DEC Updated for the Hybrid Identity Era appeared first on Semperis.
Read more

Protecting Your Active Directory Permissions

When we think of protecting Active Directory, we typically think of a few aspects of the directory service that need to be monitored and protected from disasters. If you’re responsible for the care and feeding of your corporate AD, I’m sure you can rattle off the main ones right now. But there’s one aspect I’ll … Continue reading Protecting Your Active Directory Permissions → The post Protecting Your Active Directory Permissions appeared first on Semperis.
Read more

Two New Microsoft Hybrid Services Dramatically Simplify Connecting your Active Directory to Azure

Microsoft recently announced the public preview of two major new capabilities that will make integrating your on-premises Active Directory to Azure AD much, much easier. Passthrough authentication (PTA) and Seamless Single Sign-On (I’m choosing to call it 3SO) will allow your users to easily access Azure AD applications such as Office 365 without installing a … Continue reading Two New Microsoft Hybrid Services Dramatically Simplify Connecting your Active Directory to Azure → The post Two New Microsoft Hybrid Services Dramatically Simplify Connecting your Active Directory to Azure appeared first on Semperis.
Read more

Using AD FS To Change Your AD Password Anywhere, Anytime

One of the really annoying things about passwords is that you have to remember them. If you can’t remember your password at a SaaS provider, it’s pretty straightforward: you click on the “forgot password” link and go through the password recovery process. As is often the case, however, the corporate world is more complicated.  If … Continue reading Using AD FS To Change Your AD Password Anywhere, Anytime → The post Using AD FS To Change Your AD Password Anywhere, Anytime appeared first on Semperis.
Read more

NIST joins Microsoft in Changing How We Should Think About Passwords

On the heels of Microsoft’s updated password recommendations, the National Institute for Standards and Technology (NIST) has come out with its own updated password guidelines. These recommendations parallel many of Microsoft’s recommendations and thus give them extra credibility; in some areas they go further. When two major security industry influencers independently come to such similar … Continue reading NIST joins Microsoft in Changing How We Should Think About Passwords → The post NIST joins Microsoft in Changing How We Should Think About Passwords appeared first on Semperis.
Read more

Understanding Azure AD Password (Hash) Sync

Now that businesses are adopting cloud computing as part of their business model, a large percentage are choosing to connect their on-premises Active Directory environment to its counterpart in the cloud, Microsoft’s Azure Active Directory. When you extend your on-premises AD to Azure AD, you have two choices for how you want on-premises users to … Continue reading Understanding Azure AD Password (Hash) Sync → The post Understanding Azure AD Password (Hash) Sync appeared first on Semperis.
Read more

Active Directory Corruption Comes In Two Flavors

Active Directory is a very robust application, as it should be for such a fundamental building block of a company’s IT infrastructure. But the architecture that makes it robust also makes it hard to understand.  This lack of understanding often leads to assumptions in your recovery strategy that can leave your AD broken without a … Continue reading Active Directory Corruption Comes In Two Flavors → The post Active Directory Corruption Comes In Two Flavors appeared first on Semperis.
Read more

Active Directory Replication Status Tool (ADREPLSTATUS) Rises Again

Back in 2012, I wrote about a nifty tool known as the Active Directory Replication Status Monitor (inevitably shortened to ADREPLSTATUS for efficiency’s sake) and how it was the first Microsoft tool produced in years to make monitoring Active Directory easier. Then recently Microsoft sort of took it away. Then, more recently, they gave it … Continue reading Active Directory Replication Status Tool (ADREPLSTATUS) Rises Again → The post Active Directory Replication Status Tool (ADREPLSTATUS) Rises Again appeared first on Semperis.
Read more

When you should use Azure MFA and when you should use MFA Server

One of the most common security-related trends I’m seeing with customers is an interest in adding multifactor authentication (MFA) to both their new and existing solutions. This trend is usually driven by a need to increase overall security, or to satisfy regulatory requirements. As a hybrid service, Microsoft’s Azure Multifactor Authentication (MFA) service has both … Continue reading When you should use Azure MFA and when you should use MFA Server → The post When you should use Azure MFA and when you should use MFA Server appeared first on Semperis.
Read more

Microsoft upends traditional password recommendations with significant new guidance

Based on research gleaned from literally billions of login attempts to its Azure cloud service, Microsoft updates its password recommendations – and throws out several long-held industry best practices. Microsoft has recently published a white paper, “Microsoft Password Guidance” that explains their new password guidance, based on the massive amount of data they’re collecting at … Continue reading Microsoft upends traditional password recommendations with significant new guidance → The post Microsoft upends traditional password recommendations with significant new guidance appeared first on Semperis.
Read more
Page 1 of 212