Reading Time: < 1 minute On July 10th, 2024, Nicolas Blank, Alistair Pugin and I recorded a 1-hour webinar on the alarming discoveries we did while using ENow Software's Application Governance Accelerator. The recording of this webinar is now available on-demand. The post The Recording of our '265 Days of Alarming Entra ID Application Discoveries' webinar is now available on-demand appeared first on The DirTeam.com / ActiveDir.org Weblogs ..read more

Reading Time: < 1 minute Today, I received an e-mail message from Microsoft congratulating me on being accepted to the Microsoft MVP program. Microsoft is pleased to welcome me back to the Microsoft Most Valuable Professionals (MVP) program in recognition of my outstanding contributions to the community in the following technical areas: Identity & Access Windows It’s an honor to be part of this wonderful group of people helping others and closing the feedback circle with Microsoft, especially for the situations in which people use Microsoft products in ways and social circumstan ..read more

Reading Time: 2 minutes Even though Microsoft’s Identity focus moves towards the cloud, Windows Server 2016, Windows Server 2019 and Windows Server 2022 still receive updates to improve the experiences and security of Microsoft’s on-premises powerhouses. This is the list of Identity-related updates and fixes we saw for June 2024:   Windows Server 2016 We observed the following update for Windows Server 2016: KB5039214 June 11, 2024 The June 11, 2024, update for Windows Server 2016 (KB5039214), updating the OS build number to 14393.7070, is a monthly cumulative update. It includes the fol ..read more

Reading Time: 3 minutes Entra ID, previously known as Azure AD is Microsoft's Identity Management-as-a-Service solution, offering seamless access, easy collaboration, efficiency in IT processes and improved security and compliance. In its Release Notes for Entra ID, Microsoft communicated the following planned, new and changed functionality for Entra ID for June 2024:   What's Planned Refactored account details screen in Microsoft Authenticator Generally Available Service category: Microsoft Authenticator App Product capability: User Authentication In July, enhancements fo ..read more

Reading Time: 2 minutes On Wednesday, Jule 10th, 2024, join me to understand the 'red flags,' the most significant risks, and challenges companies face and unlock the secrets of Software-as-a-Service (SaaS) Security Posture Management. We dive deep into the threats and startling discoveries uncovered in the data over the past 265 days using the ENow App Governance Accelerator tool. Join Nicolas Blank (MVP Office Apps & Services, MVP Azure, MCM & MCSM), Alistair Pugin (M365 + Security MVP ), Jay Gundotra (CEO of ENow)  and me for this 1-hour webinar as we provide the steps your or ..read more

Reading Time: < 1 minute Today marks the 18th anniversary of the first blog post on this blog, titled The Things That Are Better Left Unspoken. Fifteen years ago, in June, 2006, I posted the first blog post here. Since June 23, 2006, this blog has featured 1,743 more blogposts, 1,435 comments and draws the attention of over 20,000 pairs of eyeballs on a daily basis. Luckily, we can still claim that everything on this blog was better left unspoken… Thank you. The post Eighteen years of Things better left unspoken appeared first on The DirTeam.com / ActiveDir.org Weblogs ..read more

Reading Time: 4 minutes Entra ID, previously known as Azure AD is Microsoft's Identity Management-as-a-Service solution, offering seamless access, easy collaboration, efficiency in IT processes and improved security and compliance. In its Release Notes for Entra ID, through the Microsoft 365 Message Center, The What's New hub in the Entra Portal and Build's Book of News, Microsoft communicated the following planned, new and changed functionality for Entra ID for May 2024:   What's Planned Changing default accepted token version for new applications Generally Available Service catego ..read more

Reading Time: 3 minutes Even though Microsoft’s Identity focus moves towards the cloud, Windows Server 2016, Windows Server 2019 and Windows Server 2022 still receive updates to improve the experiences and security of Microsoft’s on-premises powerhouses. This is the list of Identity-related updates and fixes we saw for May 2024:   Windows Server 2016 We observed the following update for Windows Server 2016: KB5037763 May 14, 2024 The May 14, 2024, update for Windows Server 2016 (KB5037763), updating the OS build number to 14393.6981, is a monthly cumulative update. It includes the follow ..read more

Reading Time: 2 minutes Last week, Veeam addressed several vulnerabilities in components of its Backup Enterprise Manager, that allows attackers to bypass authentication mechanisms and execute arbitrary code.   About Veeam Backup Enterprise Manager Veeam Backup Enterprise Manager is a supplementary management and reporting application that allows admins to manage multiple Veeam Backup & Replication (VBR) installations from a single web console. With a number of Veeam Backup & Replication instances installed on different servers, Veeam Backup Enterprise Manager acts as a single ma ..read more

Reading Time: 2 minutes This week, Broadcom VMware released an update that addresses a vulnerability in ESXi. This vulnerability could be abused to negatively impact the availability of virtual Domain Controllers running on ESXi hosts. Note:  The vulnerability exists in VMware Cloud Foundation, too. The vulnerability was responsibly disclosed to Broadcom VMware.   About the DoS vulnerability The vulnerability that an adversary can abuse to negatively impact the availability of virtual Domain Controllers running on ESXi hosts is a Denial of Service (DoS) vulnerability in the storage ..read more