cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Core Infrastructure and Security Blog
Copied!
Home
Options
1,301

Infrastructure + Security: Noteworthy News (January, 2020)

Stanislav Belov on 01-16-2020 11:59 PM
Hi there! You are reading the next issue of the Infrastructure + Security: Noteworthy News series! As a reminder, the No...
709

Configure Ansible to use a Managed Identity with Azure Dynamic Inventory

wallenc on 01-13-2020 12:01 AM
In this post, I'll walk you through configuring the Ansible Azure Dynamic Inventory plugin (azure_rm) to use a managed i...
2,240

How To Install Log Analytics Gateway Using Load Balancers In Azure

Bruno Gabrielli on 01-05-2020 03:01 PM
Hello everyone, after a long time, I am back with a new post. Today I will drive you through the configuration of a load...
2,610

The NcHostAgent Service Cannot be Located on the Computer

John_Clyburn on 12-30-2019 12:00 AM
I’ve recently been working with Software Defined Networking (SDNv2). I’ve been primarily working with Windows Server 201...
7,324

Using Azure Security Center and Log Analytics to Audit Use of NTLM

LijuV on 12-22-2019 09:00 PM
Use Azure Security Center and Log Analytics to store security events from Windows servers and KQL to query them
3,028

Infrastructure + Security: Noteworthy News (December, 2019)

Stanislav Belov on 12-17-2019 11:55 PM
Hi there! You are reading the next issue of the Infrastructure + Security: Noteworthy News series! As a reminder, the No...
3,425

Install ConfigMgr CB 1902 using PowerShell

John_Clyburn on 12-16-2019 12:00 AM
The following document explains how to use PowerShell to install System Center Configuration Manager CB 1902...
19.8K

The "This Update is not Applicable to this Computer" Anomaly

Mike Kammer on 12-10-2019 06:21 AM
Hello all, this is Mike Kammer, and today we'll look into how to figure out what to do when we get that pesky "this upda...
4,035

BitLocker, Intune, and Raven

Paul Bergson on 12-04-2019 02:12 PM
Microsoft provides Windows 10 BitLocker management from both Azure (via Intune) and SCCM with enhanced features expected...
5,986

Use Azure Automation to onboard VMs to Log Analytics

wallenc on 11-26-2019 01:08 PM
In this post, I'll show how to use an Automation runbook to onboard Windows and Linux VMs to a Log Analytics workspace
2,648

The Case of SPNs Breaking Group Policy Application

Zoheb Shaikh on 11-19-2019 06:22 AM
Hello Everyone, my name is Zoheb Shaikh and I’m a Solution Engineer working with Microsoft Mission Critical team (SMC). ...
1,881

Infrastructure + Security: Noteworthy News (November, 2019) - Microsoft Ignite Edition

Stanislav Belov on 11-12-2019 11:00 PM
Hi there! You are reading the next issue of the Infrastructure + Security: Noteworthy News series! As a reminder, the No...
3,283

Demystifying Microcode Updates for Intel and AMD Processors

SteveMat on 11-11-2019 02:27 PM
Hello, my name is Steve Mathias, Microsoft Premier Field Engineer (PFE) and I wanted to spend a moment to discuss the “m...
58.7K

LDAP Channel Binding and LDAP Signing Requirements - Update now scheduled for March 2020

Alan La Pietra on 11-04-2019 06:26 AM
Upcoming March 2020 updates will change default behavior of LDAP CBT and Signing (integrity). Want to know more? Just go...
866

View a PAM User's Roles with Advanced Search Scope Configuration

Sean Leonard on 11-01-2019 03:23 PM
First published on MSDN on Dec 05, 2018 During a recent MIM PAM deployment, I was asked if it would be possible to creat...
876

MIM 4.5.26.0 - MPR Creation - The Required Field Cannot Be Empty

Joe_Zinn on 11-01-2019 03:22 PM
First published on MSDN on Aug 23, 2018 I recently ran into an issue after updating MIM 2016 to version 4.
975

MIM 2016 SP1 - Portal Servers Run Out of Disk Space.

Joe_Zinn on 11-01-2019 03:22 PM
First published on MSDN on Aug 15, 2018 Summary: I recently ran into an issue after upgrading a MIM Environment to MIM 2...
943

MIM 2016 SP1 - Service and Portal Installation Guide

Joe_Zinn on 11-01-2019 03:22 PM
First published on MSDN on Jul 19, 2018 Introduction:This document is intended to be used as an operational build docume...
780

MIM PAM Feature Installer Failure - SetADForestFunctionalLevel

Sean Leonard on 11-01-2019 03:21 PM
First published on MSDN on Jun 21, 2018 I want to review a huge blocker that held up one of my recent installations of M...
768

Applying a Release Update to the MIM Service and Portal

Joe_Zinn on 11-01-2019 03:21 PM
First published on MSDN on Jun 12, 2018 Using This Guide:Introduction:This document is intended to be used as an operati...
741

Applying a Release Update to the MIM Synchronization Service and Offline Spare

Joe_Zinn on 11-01-2019 03:21 PM
First published on MSDN on Jun 12, 2018 Using This Guide:Introduction:This document is intended to be used as an operati...
1,977

Installing MIM Synchronization Service with an Offline Spare

Joe_Zinn on 11-01-2019 03:20 PM
First published on MSDN on Jun 12, 2018 Using This Guide:Introduction:This document is intended to be used as an operati...
784

Install the MIM 2016 Management Agent (MIM MA)

Joe_Zinn on 11-01-2019 03:20 PM
First published on MSDN on Jun 12, 2018 Introduction:This document is intended to be used as an operational preparatory ...
1,078

Service Accounts, SPNs, and Kerberos Delegation configurations for MIM Service and Portal Installation

Joe_Zinn on 11-01-2019 03:20 PM
First published on MSDN on Jun 07, 2018 Introduction:This document is intended to be used as an operational preparatory ...
1,170

Install of SharePoint Foundation 2013 SP1 for use with FIM / MIM

Joe_Zinn on 11-01-2019 03:20 PM
First published on MSDN on Jun 01, 2018 Introduction:This document is intended to be used as an operational build docume...
1,868

Windows Server 2012 R2 – Uninstalling .Net Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.71

Joe_Zinn on 11-01-2019 03:20 PM
First published on MSDN on May 31, 2018 Introduction: Some application installers require specific versions of .
2,299

Installing MIM Synchronization Service with an Offline Spare

Joe_Zinn on 11-01-2019 03:20 PM
First published on MSDN on May 25, 2018 Using This Guide:Introduction:This document is intended to be used as an operati...
787

MIM Handy Tip Series - Breadcrumbing

AMARSIGLIA on 11-01-2019 03:20 PM
First published on MSDN on May 15, 2018 Everyone put your phones down and get your pencils ready.
805

Calculating the domain and populating user attributes across multiple MIM implementations.

Joe_Zinn on 11-01-2019 03:20 PM
First published on MSDN on May 09, 2018 OVERVIEW: Enterprise environments often contain multiple independent MIM install...
758

Updating Attributes Based on a Detected Name Change

ktackett on 11-01-2019 03:17 PM
First published on MSDN on Apr 12, 2018 Scenario:In a MIM environment, a user goes through a name change (marriage, divo...
Latest Comments
RossUA
in LDAP Channel Binding and LDAP Signing Requirements - Update now scheduled for March 2020 on 01-21-2020
@jpenning It looks like ldp.exe doesn't have a setting that controls negotiate for LDAP Signing and Channel Token binding. Therefore, you have to use registry to enable or disable Signing and Integrity. To disable LDAP Signing negotiation for the client, configure key ldapclientintegrity=0 under HKL...
0 Likes
jpenning
in LDAP Channel Binding and LDAP Signing Requirements - Update now scheduled for March 2020 on 01-21-2020
@RossUA Got it - thanks! In this test scenario, what exactly made it a 'signed' NTLM request? Is it possible to use LDP to test an NTLM attempt that is not requesting signing?
0 Likes
RossUA
in LDAP Channel Binding and LDAP Signing Requirements - Update now scheduled for March 2020 on 01-21-2020
@jpenning On the Bind dialogue, you choose Advanced, press Advanced button and choose the authentication protocol you want to use:
1 Likes
jpenning
in LDAP Channel Binding and LDAP Signing Requirements - Update now scheduled for March 2020 on 01-21-2020
@RossUA Thanks for that. Forgive my ignorance, I figured out how to test the simple bind with the LDP tool - but can't figure out how to test with NTLM?
0 Likes
RossUA
in LDAP Channel Binding and LDAP Signing Requirements - Update now scheduled for March 2020 on 01-21-2020
@jpenning Yes, it is possible to use NTLM while authenticating the LDAP Bind and have signing afterwards. You can try it with ldp.exe tool:At the same time, simple ldap bind doesn't work, which proves that server is requiring signing:Both tests done with connection to port 389.
0 Likes