November. New Orleans.
No Excuses.
The Hybrid Identity Protection Conference is heading to NOLA and you're invited! Get the latest on ITDR, operational resilience, and leveling up your security posture. Are you hip, or are you HIP?
Register your rad selfActive Directory Security
Categories
- Active Directory Backup & Recovery (60)
- Active Directory Security (195)
- AD Security 101 (17)
- Community Tools (19)
- Directory Modernization (9)
- From the Front Lines (69)
- Hybrid Identity Protection (60)
- Identity Attack Catalog (14)
- Identity Threat Detection & Response (131)
- Our Mission: Be a Force for Good (14)
- Purple Knight (5)
- The CISO's Perspective (16)
- Threat Research (60)
- Uncategorized (1)
Azure AD Connect: the staging server
- Sean Deuby | Principal Technologist
Microsoft continues to work on a sore spot in its hybrid identity strategy: The challenge of deploying its identity bridge between Active Directory Domain Services (AD DS) on premises and Azure Active Directory in the cloud. This bridge consists of AD FS for federation and a succession of utilities, culminating…
Why On-Premises Active Directory Still Matters in a Cloud-Connected World
- Sean Deuby | Principal Technologist
With all the talk about stampeding to the cloud, I get asked fairly regularly if I think Active Directory will be going away. No, AD isn't becoming obsolete; it's evolving. And as it evolves, I'd argue that it matters more than ever. Within Microsoft ISSD (Identity and Security Services Division),…
Vulnerability in Kerberos Allows Elevation of Privilege
- Sharon Vardi
Recently, Microsoft has released a security update (MS14-068) for Windows Server. The patched vulnerability is in the Windows Kerberos Key Distribution Center (KDC), which generates the session tickets to identities within Active Directory while accessing the Domain's resources. When clients request access to a resource, they contact the ticket-granting service…
