Security

Security related items and thoughts

0

Install March 2021 Security Update–Exchange 2013 Net Framework 4.7.2

Posted on by Rhoderick Milne [MSFT]

You will have seen the multiple posts and communications around the Hafnium Exchange security issue.  One of the most disconcerting issues has been the number of Exchange installs that have not been patched in several years.  Once the storm has abated, I'll put down some thoughts and talk through some of the most problematic issues, but for now let's focus on the task in hand.  Security updates ar… Read the rest “Install March 2021 Security Update–Exchange 2013 Net Framework 4.7.2”

11

Collected Links For Hafnium – March 2021 Exchange Security Issue

Posted on by Rhoderick Milne [MSFT]

The below are a series of links, tips and some very brief thoughts on Hafnium.  I will purposefully not include the content of the other locations as it is changing so rapidly, and there is no way to ensure that it would be updated here in a timely fashion.

 

 

If you read nothing else, please ensure that you install the update from an elevated CMD prompt if you are manually installing. 

FaiRead the rest “Collected Links For Hafnium – March 2021 Exchange Security Issue”

0

Exchange 2010 SP3 RU32 Released

Posted on by Rhoderick Milne [MSFT]

Today is an out of band security release for Exchange.  Due to the way that Exchange 2010 is serviced, security updates are released as a new update rollup (RU).

You can visit the Microsoft Security  Response Center to read the details about this and the other released security updates.

Download Exchange 2010 SP3 RU32

Note – The image does not show RU 32, and I'll update it once the download site is corrected. 

This is build 14.03.Read the rest “Exchange 2010 SP3 RU32 Released”

2

Out of Band Critical Exchange Security Updates–March 2021

Posted on by Rhoderick Milne [MSFT]

Security updates were released today for Exchange 2010, 2013, 2016 and 2019.  Attacks were detected which leveraged these vulnerabilities, so an out of band set of updates was released

This a remote code execution on TCP 443 and is already being exploited as a 0-Day attacks against on-premises Exchange servers.

Microsoft strongly recommends installing this update immediately.  Internet facing serverRead the rest “Out of Band Critical Exchange Security Updates–March 2021”

2

Defender For Identity Sensor Service Fails To Start on AD FS – Sequence Contains No Elements

Posted on by Rhoderick Milne [MSFT]

After installing Defender for Identity sensor onto AD FS, you may experience an issue where the service does not enter the running state.

In the Microsoft Defender for Identity portal the sensor is reported as "Not Configured"

Lab Starting Reference Point

Since the AD FS sensor is new (January 2021), you initially installed sensors onto all of your AD Domain Controllers.

The below indicates that all o… Read the rest “Defender For Identity Sensor Service Fails To Start on AD FS – Sequence Contains No Elements”

0

Exchange December 2020 Security Updates

Posted on by Rhoderick Milne [MSFT]

Please be aware that Exchange 2013, Exchange 2016  and Exchange 2019 security updates were released as part of the December 2020 patch Tuesday release.  The overall rating is critical, and the update resolves multiple issues.

Details for these, and previously released updates can be found in the Security Update Guide.  Also note that Exchange 2010 SP3 RU31 was also released.

 

image

 

For all of th… Read the rest “Exchange December 2020 Security Updates”

0

Exchange Managed Availability Broken With TLS 1.2 Changes

Posted on by Rhoderick Milne [MSFT]

In most enterprise customers there is a segregation of duties between multiple teams.  This could be networking and desktop.  Or Windows Server platform and messaging.  It was the split in these roles, and especially a dearth of communication which led to this tale of woe with TLS 1.2 and Exchange.

The reasons for moving to TLS 1.2 and avoiding SSL2, SSL3, TLS 1.0 and TLS 1.1 should be well underst… Read the rest “Exchange Managed Availability Broken With TLS 1.2 Changes”

3

A Tale of Two Certificates–SHA1 Certificate Created During Exchange 2016 Installation

Posted on by Rhoderick Milne [MSFT]

The security space is constantly evolving, and while a lot of the recent work has been on moving to TLS 1.2, a previous focus in the industry was to stop issuing SHA1 certificates and transition to SHA2 based certificates.  As a result, many will run security scans to review the presence of installed certificates and their properties.  In one such engagement, the security team noted their displeas… Read the rest “A Tale of Two Certificates–SHA1 Certificate Created During Exchange 2016 Installation”

0

Unresolved RID 526 and 527 After ADPrep

Posted on by Rhoderick Milne [MSFT]
Unresolved RID 526 and 527 After ADPrep

After preparing AD and installing the first Windows Server 2019 DC into an existing AD environment, it was noted that there were unresolved SIDs listed at the root of the domain.  This was corelated to the AD 2019 upgrade as permissions had been audited and cleaned up prior due to previous issues in the environment.  Previously all DCs were Windows Server 2012 R2 with all updates installed.

After r… Read the rest “Unresolved RID 526 and 527 After ADPrep”

3

Unable To Install PowerShell Modules – Unable To Download From URI Error

Posted on by Rhoderick Milne [MSFT]

When you try to install a PowerShell module or connect to the PowerShell Repository you may get the below error messages:

WARNING: Unable to download from URI 'https://go.microsoft.com/fwlink/?LinkID=627338&clcid=0x409' to ''.
WARNING: Unable to download the list of available providers. Check your internet connection.

PowerShell Error - Unable to download from URI

For make most glorious benefit engine of search:

PackageManagement\Install-PackagRead the rest “Unable To Install PowerShell Modules – Unable To Download From URI Error”