Modern Authentication with Azure Active Directory for Web Applications

Wednesday, January 13, 2016

Hey As you might have seen, last week Microsoft Press published Vittorio Bertocci’s Modern Authentication with Azure Active Directory for Web Applications, an authoritative, deep-dive guide to building Active Directory authentication solutions. Yesterday  Microsoft  happy to share the book’s Foreword, by Mark Russinovich (Chief Technology Officer for Microsoft Azure), in which Mark describes the importance of Azure AD: “Microsoft Azure Active Directory (Azure AD) is arguably the heart of Microsoft’s cloud platform. All Microsoft cloud services, including Microsoft Azure, Microsoft Xbox Live, and Microsoft Office 365, use Azure AD as their identity provider. And because Azure AD is a public cloud...
tags:
no comments

Authenticating with Azure AD

Friday, January 8, 2016

Hey Azure Active Directory was averaging just over 1 billion authentications a day. Today Microsoft averaging over 1.3B authentications a day:     Read More: http://blogs.technet.com/b/ad/archive/2016/01/05/best-way-to-connect-to-office-365-and-azure-ad-latest-data-azure-ad-connect-momentum.aspx    
tags:
no comments

Microsoft Identity Manager 2016 is now GA

Friday, August 7, 2015

Hey Microsoft Identity Manager 2016 offers a comprehensive solution for managing identities, credentials, and identity-based access policies across heterogeneous environments.  MIM empowers users with self-service password reset and embeds self-help tools in Office and Windows so users can manage routine aspects of identity and access, gives IT professionals rich administrative tools and enhanced automation, and delivers .NET, REST and Web Services-based extensibility for developers.   Try it: http://www.microsoft.com/en-us/evalcenter/evaluate-microsoft-identity-manager-2016    
tags:
no comments

New Azure Authenticator application

Tuesday, June 30, 2015

Hey Mobile apps are a popular method for receiving a multi-factor authentication request. To provide your users with a better app experience, Microsoft have recently released a new version of the Azure Authenticator.     Read More: http://blogs.technet.com/b/ad/archive/2015/06/29/try-the-new-azure-authenticator-app.aspx  
tags:
no comments

Local Administrator Password Solution (LAPS)

Sunday, May 3, 2015

Hey Microsoft Security Advisory 3062591 is offering the Local Administrator Password Solution (LAPS) that provides a solution to the issue of using a common local account with an identical password on every computer in a domain. LAPS resolves this issue by setting a different, random password for the common local administrator account on every computer in the domain. Domain administrators using the solution can determine which users, such as helpdesk administrators, are authorized to read passwords.   Read More: https://technet.microsoft.com/en-us/library/security/3062591.aspx  
tags:
no comments

Microsoft Identity Manager Public Preview Updated

Wednesday, April 22, 2015

Hey a updated public preview of Microsoft Identity Manager (MIM, the product formerly known as Forefront Identity Manager) is now available.   For more Details follow the link below: http://blogs.technet.com/b/ad/archive/2015/04/21/microsoft-identity-manager-public-preview-updated.aspx  
tags:
no comments

Abusing Microsoft Kerberos

Thursday, April 9, 2015

Hey Microsoft Active Directory uses Kerberos to handle authentication requests by default. However, if the domain is compromised, how bad can it really be? With the loss of the right hash, Kerberos can be completely compromised for years after the attacker gained access. https://www.youtube.com/watch?v=lJQn06QLwEw An Interesting Video by Alva Duckwall and Benjamin Delpy Enjoy.  
tags:
no comments

Enhanced security with Kerberos only authentication in Microsoft Dynamics AX

Wednesday, March 25, 2015

Hey Recently, I happened to attend on the Dynamics AX identity , working with strong authentication protocol , the standard configuration option allows by default the NTLM mix with Kerberos. At AX 2009/2012R2/2012R3 versions, We can configure to Kerberos Authentication only .   The link below guide and describes how to implement it: https://community.dynamics.com/ax/b/axsupport/archive/2015/03/20/enhanced-security-with-kerberos-only-authentication-in-microsoft-dynamics-ax.aspx        
tags:
no comments

One Time Password over SMS Added to Azure MFA Server

Wednesday, March 4, 2015

Hey Earlier this week Microsoft announced that they turned on support in there Azure MFA server for One Time Passwords of SMS, the #1 feature customers have asked them to add. for more details follow the link below: http://blogs.technet.com/b/ad/archive/2015/03/02/one-time-password-over-sms-added-to-azure-mfa-server.aspx
tags:
no comments