Kerberos Issues November 2022
The November 8, 2022 and later Windows updates address a security bypass and elevation of privilege vulnerability with Authentication Negotiation by … Read the rest “Kerberos Issues November 2022”
Check If AD FS WSTrust Endpoint Enabled
Active Directory Federation Services (AD FS) uses endpoints to provide access to features. There are a series of different endpoints which each serve… Read the rest “Check If AD FS WSTrust Endpoint Enabled”
WordPress Linux Web App Poor Performance
Having to host, upgrade and manage WordPress is not really my main job. The various posts over the years will provide a small clue that other things … Read the rest “WordPress Linux Web App Poor Performance”
Migrate Azure VMs To Separate Subscription
Defining Azure governance so that your subscriptions, management groups is correctly built out and deployed is critical. Even with the best planning … Read the rest “Migrate Azure VMs To Separate Subscription”
How to Use NsLookup To Check DKIM Record
There are a multitude of online tools that help diagnose issues with various mail services, but understanding what these tools actually check is valua… Read the rest “How to Use NsLookup To Check DKIM Record”
Exchange Server Extended Protection
Extended Protection uses service binding and channel binding to help prevent an authentication relay attack. In an authentication relay attack, a clie… Read the rest “Exchange Server Extended Protection”
Remediate Exchange Security CVE-2022-21978
The May 2022 security update for Exchange Server 2013, 2016 and 2019 resolved CVE-2022-21978. A common issue is that admins are only doing part of th… Read the rest “Remediate Exchange Security CVE-2022-21978”
Implementing Exchange DownloadDomain Security
In the field, I’m seeing multiple customers that are struggling to implement the DownloadDomain feature. It does require a little prep work and it is … Read the rest “Implementing Exchange DownloadDomain Security”
Exchange 2019 Point of No Return
When designing an upgrade strategy from an older version of Exchange to a newer one, a question that needs to be addressed is do we need to introduce … Read the rest “Exchange 2019 Point of No Return”
Upgrade to Azure AD Connect 2.0
When delivering Office 365 Security Optimisation Assessments (SOA) to customers, one of the control items is the version of Azure AD Connect deployed a… Read the rest “Upgrade to Azure AD Connect 2.0”