Insights From Thought Leaders Around The Globe
The digital identities of modern enterprises exist in a dynamic environment. Read thought leadership from experts worldwide regarding the constantly changing global IT environment and insights for keeping up with growing demands, and securing against escalating threats and vulnerabilities.
Updated: Azure AD Password Protection became generally available April 2nd, 2019. The service is largely the same as I presented in this post, with the following updates: The two proxy limit has been lifted. When registering the proxy and the Active Directory forest, 3 authentication modes are now available. Two of them support MFA so it’s not necessary to have a Global Admin account without MFA. The banned... Read More
Updated: Azure AD Password Protection became generally available April 2nd, 2019. The service is largely the same as I presented in this post, with the following updates: The two proxy limit has been lifted. When registering the proxy and the Active Directory forest, 3 authentication modes are now available. Two of them support MFA so … Read More
June 20, 2018, Los Angeles, U.S. – Today Red Herring announced Semperis as a winner of the Top 100 North America 2018 Award for forging a niche in the cutting-edge sector of cybersecurity. The event was held at the Marina Del Rey Hotel in California where the winners celebrated at a special awards ceremony after … Read More
Keeping your cloud-based IT infrastructure secure is a constant effort. The people who want access to your data are always working on ways they can get in, so both you and Microsoft need to be working on ways to keep them out. Microsoft is aware of this responsibility, and since you are reading this blog … Read More
Azure Active Directory Administrative Units: Azure AD Delegation of Administrative Permissions The move to the cloud often means that we need to learn new ways to manage access to cloud based resources. The methods of delegating administrative control we are accustomed to on-premises are often no longer applicable to cloud-based resources. Office 365 has long … Read More
I feel the dilemma ‘Between a rock and a hard place’ applies to many medium-sized businesses when it comes to cloud identity in the face of Microsoft retargeting their identity investment towards the cloud. These organizations may be too big to fully benefit from Identity Management-as-a-Service, but too small to really afford the impact an … Read More
It’s been almost 30 years since the movie “Hackers” was released and many of us, when we think of a cyberattacker, still picture a guy wearing a hoody, hanging in his basement while hacking away at a keyboard to gain notoriety. However, a lot has changed in the past three decades and the portrait of … Read More
Ransomware attacks on enterprises are escalating both in frequency and complexity. Many in the security space believe that WannaCry and NotPetya were only a sample of what’s coming. Increasingly, Active Directory (AD) is at the center of cyberattacks, with wipers like MBR-ONI utilizing AD to maximize the attack reach and, in some cases, wipers like … Read More
“If a tree falls in a forest and no one is around to hear it, does it make a sound?” Although the sub-title for this article is a philosophical question, asked by George Berkeley in 1710, it proved to be completely relevant over 300 years later, while I was working with Azure Security Center. A … Read More
Back in 1999, I wrote a book on Windows 2000 Server in general, and Active Directory in particular. I try not to look back at what I wrote about AD back then compared to what I know now, but I remain fond of a passage that explained how the Kerberos security protocol works – using … Read More
In recent blog posts, I’ve been talking a lot about new Active Directory attack methods where attackers are compromising user accounts that lead to increasing levels of privilege in AD. Well, unfortunately, now it seems a recently discovered Azure AD Connect configuration option is making it a little easier for attackers to take control over … Read More
