cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Core Infrastructure and Security Blog
Copied!
Home
Options
2,198

BitLocker, Intune, and Raven

Paul Bergson on 12-04-2019 02:12 PM
Microsoft provides Windows 10 BitLocker management from both Azure (via Intune) and SCCM with enhanced features expected...
2,301

Use Azure Automation to onboard VMs to Log Analytics

wallenc on 11-26-2019 01:08 PM
In this post, I'll show how to use an Automation runbook to onboard Windows and Linux VMs to a Log Analytics workspace
1,649

The Case of SPNs Breaking Group Policy Application

Zoheb Shaikh on 11-19-2019 06:22 AM
Hello Everyone, my name is Zoheb Shaikh and I’m a Solution Engineer working with Microsoft Mission Critical team (SMC). ...
1,345

Infrastructure + Security: Noteworthy News (November, 2019) - Microsoft Ignite Edition

Stanislav Belov on 11-12-2019 11:00 PM
Hi there! You are reading the next issue of the Infrastructure + Security: Noteworthy News series! As a reminder, the No...
2,222

Demystifying Microcode Updates for Intel and AMD Processors

SteveMat on 11-11-2019 02:27 PM
Hello, my name is Steve Mathias, Microsoft Premier Field Engineer (PFE) and I wanted to spend a moment to discuss the “m...
8,973

LDAP Channel Binding and LDAP Signing Requirements - JANUARY 2020 Updates

Alan La Pietra on 11-04-2019 06:26 AM
Upcoming January 2020 updates will change default behavior of LDAP CBT and Signing (integrity). Want to know more? Just ...
399

View a PAM User's Roles with Advanced Search Scope Configuration

Sean Leonard on 11-01-2019 03:23 PM
First published on MSDN on Dec 05, 2018 During a recent MIM PAM deployment, I was asked if it would be possible to creat...
431

MIM 4.5.26.0 - MPR Creation - The Required Field Cannot Be Empty

Joe_Zinn on 11-01-2019 03:22 PM
First published on MSDN on Aug 23, 2018 I recently ran into an issue after updating MIM 2016 to version 4.
524

MIM 2016 SP1 - Portal Servers Run Out of Disk Space.

Joe_Zinn on 11-01-2019 03:22 PM
First published on MSDN on Aug 15, 2018 Summary: I recently ran into an issue after upgrading a MIM Environment to MIM 2...
438

MIM 2016 SP1 - Service and Portal Installation Guide

Joe_Zinn on 11-01-2019 03:22 PM
First published on MSDN on Jul 19, 2018 Introduction:This document is intended to be used as an operational build docume...
335

MIM PAM Feature Installer Failure - SetADForestFunctionalLevel

Sean Leonard on 11-01-2019 03:21 PM
First published on MSDN on Jun 21, 2018 I want to review a huge blocker that held up one of my recent installations of M...
336

Applying a Release Update to the MIM Service and Portal

Joe_Zinn on 11-01-2019 03:21 PM
First published on MSDN on Jun 12, 2018 Using This Guide:Introduction:This document is intended to be used as an operati...
315

Applying a Release Update to the MIM Synchronization Service and Offline Spare

Joe_Zinn on 11-01-2019 03:21 PM
First published on MSDN on Jun 12, 2018 Using This Guide:Introduction:This document is intended to be used as an operati...
333

Installing MIM Synchronization Service with an Offline Spare

Joe_Zinn on 11-01-2019 03:20 PM
First published on MSDN on Jun 12, 2018 Using This Guide:Introduction:This document is intended to be used as an operati...
340

Install the MIM 2016 Management Agent (MIM MA)

Joe_Zinn on 11-01-2019 03:20 PM
First published on MSDN on Jun 12, 2018 Introduction:This document is intended to be used as an operational preparatory ...
502

Service Accounts, SPNs, and Kerberos Delegation configurations for MIM Service and Portal Installation

Joe_Zinn on 11-01-2019 03:20 PM
First published on MSDN on Jun 07, 2018 Introduction:This document is intended to be used as an operational preparatory ...
745

Install of SharePoint Foundation 2013 SP1 for use with FIM / MIM

Joe_Zinn on 11-01-2019 03:20 PM
First published on MSDN on Jun 01, 2018 Introduction:This document is intended to be used as an operational build docume...
1,400

Windows Server 2012 R2 – Uninstalling .Net Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.71

Joe_Zinn on 11-01-2019 03:20 PM
First published on MSDN on May 31, 2018 Introduction: Some application installers require specific versions of .
1,874

Installing MIM Synchronization Service with an Offline Spare

Joe_Zinn on 11-01-2019 03:20 PM
First published on MSDN on May 25, 2018 Using This Guide:Introduction:This document is intended to be used as an operati...
322

MIM Handy Tip Series - Breadcrumbing

AMARSIGLIA on 11-01-2019 03:20 PM
First published on MSDN on May 15, 2018 Everyone put your phones down and get your pencils ready.
347

Calculating the domain and populating user attributes across multiple MIM implementations.

Joe_Zinn on 11-01-2019 03:20 PM
First published on MSDN on May 09, 2018 OVERVIEW: Enterprise environments often contain multiple independent MIM install...
311

Updating Attributes Based on a Detected Name Change

ktackett on 11-01-2019 03:17 PM
First published on MSDN on Apr 12, 2018 Scenario:In a MIM environment, a user goes through a name change (marriage, divo...
299

Rules Extensions –Understanding Date Time Conversion Part 2

AMARSIGLIA on 11-01-2019 03:12 PM
First published on MSDN on Nov 27, 2017 In this post we will continue the understanding of using functions in a rules ex...
315

Rules Extensions –Understanding Date Time Conversion Part 1

ktackett on 11-01-2019 03:12 PM
First published on MSDN on Nov 26, 2017 Recently I have received several questions and “Ridiculous” Comments on the Post...
308

(WAL) – Workflow Example – Removal of a multivalued reference attribute

AMARSIGLIA on 11-01-2019 03:09 PM
First published on MSDN on Oct 13, 2017 Special Thanks to Mr.
293

Outbound Synchronization Rule Type Application - Explained

ktackett on 11-01-2019 03:08 PM
First published on MSDN on Sep 22, 2017 Something I get asked about a lot are the different types of outbound synchroniz...
303

Sync Rule Walk Through: Outbound System Scoping Filter User Synchronization Rule

ktackett on 11-01-2019 03:08 PM
First published on MSDN on Sep 20, 2017 Welcome to Part 2 of the “Sync Rule Walk Through” series.
291

Sync Rule Walk Through: Inbound User Synchronization Rule

ktackett on 11-01-2019 03:07 PM
First published on MSDN on Sep 20, 2017 While we’ve touched on sync rules in the past with some examples, I’d like to de...
354

Management Agent Configuration – Part 5: Active Directory Lightweight Directory Service Management Agent

ktackett on 11-01-2019 03:05 PM
First published on MSDN on Sep 15, 2017 This is Part 5 in a series of commonly used management agents.
297

Rules Extensions – MA Extension

AMARSIGLIA on 11-01-2019 03:02 PM
First published on MSDN on Jun 23, 2017 The following is just an example of what an MA Extension would like like and sho...
Latest Comments
romuel
in LDAP Channel Binding and LDAP Signing Requirements - JANUARY 2020 Updates on 12-06-2019
@Ricoli610My tests confirm your remarks:DC: LDAP server signing requirement: None (default) means ldapserverintegrity registry value 1DC: LDAP server signing requirement: Required means ldapserverintegrity registry value 2(and not 0 and 1 as expected, which is confusing) This would mean that the pre...
0 Likes
Dustin Adam
in BitLocker, Intune, and Raven on 12-05-2019
@Paul Bergson; Great Article, my organization has moved to using InTune for BitLocker management and reporting, and it works spectacularly well. However, one thing your article leaves out that we had to learn the hard way: As a Hybrid-Join tenant, BitLocker will only escrow the BitLocker key to AD O...
0 Likes
Ricoli610
in LDAP Channel Binding and LDAP Signing Requirements - JANUARY 2020 Updates on 12-04-2019
@Alan La Pietra @ChadWst Thank you for all the additional information and links.Just flagging up that I've tried changing the Domain controller: LDAP server signing requirements setting in the DDCP from None to Required and this changed the ldapserverintegrity registry entry from 1 to 2 (below HKLM\...
0 Likes
Alan La Pietra
in LDAP Channel Binding and LDAP Signing Requirements - JANUARY 2020 Updates on 12-04-2019
Adding some other information Important to point out: LDAP over TLS/SSL communication are already signed as TLS would detect any modification of the payload as it can't be decrypted. The behavior for LDAP simple binds and LDAP simple binds through SSL are as follows: LDAP simple binds are rejected I...
0 Likes
ChadWst
in LDAP Channel Binding and LDAP Signing Requirements - JANUARY 2020 Updates on 12-04-2019
@Alan La Pietra -- Another follow-up to your response. Up til this point I have considered LDAP signing and LDAP CBT mutually exclusive. Is this accurate? For example, could we disable LDAP signing=REQUIRED and move forward with CBT = 1? These changes dont have to be done together right?
0 Likes