Top 6 Considerations for Choosing an Active Directory Disaster Recovery Solution

Most IT departments have no issue admitting the high importance of a highly available Active Directory. It’s become clear that while Active Directory downtime is rare, when it does happen, it’s devastatingly costly. Most modern enterprises live and die by their identity infrastructure, and Active Directory is primarily at the core of that infrastructure. And […]

Active Directory as A Target: Why AD Defense Is More Critical Than Ever

We can start with the obvious. Active Directory is the cornerstone of an increasing number of business functionalities, and every year more work hinges on stable AD operability. AD access is also a gateway to a lot of your organization’s information. It’s known that there is no such thing as an attack-proof organization, and according […]

NIST joins Microsoft in Changing How We Should Think About Passwords

On the heels of Microsoft’s updated password recommendations, the National Institute for Standards and Technology (NIST) has come out with its own updated password guidelines. These recommendations parallel many of Microsoft’s recommendations and thus give them extra credibility; in some areas they go further. When two major security industry influencers independently come to such similar […]

Active Directory Corruption Comes In Two Flavors

Active Directory is a very robust application, as it should be for such a fundamental building block of a company’s IT infrastructure. But the architecture that makes it robust also makes it hard to understand.  This lack of understanding often leads to assumptions in your recovery strategy that can leave your AD broken without a […]

Active Directory Replication Status Tool (ADREPLSTATUS) Rises Again

Back in 2012, I wrote about a nifty tool known as the Active Directory Replication Status Monitor (inevitably shortened to ADREPLSTATUS for efficiency’s sake) and how it was the first Microsoft tool produced in years to make monitoring Active Directory easier. Then recently Microsoft sort of took it away. Then, more recently, they gave it […]

Microsoft upends traditional password recommendations with significant new guidance

Based on research gleaned from literally billions of login attempts to its Azure cloud service, Microsoft updates its password recommendations – and throws out several long-held industry best practices. Microsoft has recently published a white paper, “Microsoft Password Guidance” that explains their new password guidance, based on the massive amount of data they’re collecting at […]

Hidden Gems: The Azure Active Directory Whitepapers

It’s pretty well accepted now that the world is moving away from painstakingly planned, piloted, deployed, and maintained on-premises applications in local data centers. It’s moving to web services, hosted in the cloud (best definition: your stuff on someone else’s computer) whose new capabilities are rapidly deployed and refined via a DevOps mentality. Another artifact […]

SaaS Passwords Are Like Cockroaches

And in the case of passwords, each one – especially each forgotten one – is a little security risk scurrying around in the shadows. You may think you have gotten rid of them (or at least reduced them to a manageable amount), but they still keep popping up. And as we all know, SaaS applications, […]

IdFix – discovery and remediation of Active Directory objects

As I help companies connect their on-premises Active Directory Domain Services (AD DS) to Azure AD in order to use Microsoft services like Office 365, I’ve found that a critical step is often overlooked. Skipping this step can potentially set your deployment back by weeks! Fortunately, Microsoft has provided a tool to help speed your […]

8 Situations That Put Your Active Directory At Risk

Active Directory Domain Services (AD DS) has grown to be a marvelously reliable, highly scalable, and fault tolerant core component of your company’s IT infrastructure. It generally works quite well without requiring a lot of attention. But the AD DS admin must put in extra work to take the service from a “working well on […]