Core Infrastructure and Security Blog - Microsoft Tech Community

Microsoft Tech Community

Options

815

John_Clyburn on 02-27-2020 12:00 AM

Hello everyone, my name is John Clyburn and I am a Sr. consultant in MCS. I recently ran into an interesting problem wit...

1,293

Stanislav Belov on 02-25-2020 11:55 PM

Hi there! You are reading the next issue of the Infrastructure + Security: Noteworthy News series! As a reminder, the No...

1,465

DanielMetzger on 02-23-2020 03:00 PM

Use a Windows 10 laptop and convert it to a secure Hyper-V host to run the offline root CA.

1,801

Bruno Gabrielli on 02-21-2020 11:22 AM

Hello Security universe, today I came across an interesting news directly from the Product Group. After quite some time,...

3,428

DanielMetzger on 02-20-2020 08:37 AM

I am going to show you how to use a minimal set of Group Policy objects to isolate domain admins and domain controllers ...

1,132

BrandonWilson on 02-19-2020 05:54 AM

Some reports were received where app publishing is failing when using a User Configuration File applied to the packages....

3,516

Zoheb Shaikh on 02-13-2020 12:00 AM

Hi all! Zoheb Shaikh here again, and this time I will be sharing an interesting script to alert on Expiring certificates...

4,710

John_Clyburn on 02-10-2020 12:00 AM

Hello everyone, my name is John Clyburn and I am a Sr. consultant in MCS. I’ve recently been working with SCVMM 2019. I ...

3,366

Tim_Beasley on 02-06-2020 02:10 PM

Ever wonder how potentially vulnerable your tenant is in Azure? Learn how to enable the vulnerability assessment check i...

1,732

hspinto on 02-04-2020 07:21 AM

Learn how to use Azure Automation Hybrid Worker in on-premises scenarios where you need to authenticate against local re...

8,238

Jon Warnken on 01-30-2020 06:53 AM

With the end of support for Windows 7, Windows Server 2008, and Windows Server 2008 R2 on January 14, 2020, many of our ...

1,843

Sean Greenbaum on 01-28-2020 09:19 AM

In this post, lets look into how to convert ETL files captured by NETSH into a .PCAP file format that can be used by oth...

941

NoMoePwds on 01-24-2020 02:10 PM

First published on TECHNET on Dec 12, 2018 Hello all, Tochi Ezebube here again from the Active Directory Certificate Ser...

711

NoMoePwds on 01-24-2020 02:10 PM

First published on TECHNET on Mar 12, 2018 Wes Hammond here from Premier Field Engineering.

568

NoMoePwds on 01-24-2020 02:10 PM

First published on TECHNET on Feb 24, 2017 Hey Everyone,A little while back I posted this article to my own personal blo...

489

NoMoePwds on 01-24-2020 02:10 PM

First published on TECHNET on Nov 30, 2016 Hi there!This is Tochi Ezebube with the Active Directory Certificate Services...

542

NoMoePwds on 01-24-2020 02:10 PM

First published on TECHNET on Jul 24, 2015 A fellow engineer at Microsoft, Roger Grimes, has published a great article o...

560

NoMoePwds on 01-24-2020 02:10 PM

First published on TECHNET on Apr 26, 2015 Setting up NDES using a Group Managed Service Account (gMSA)Hallo everybody, ...

564

NoMoePwds on 01-24-2020 02:09 PM

First published on TECHNET on Sep 08, 2014 Hey Everyone, I am back with the last part of this 3 of this series on TPM pr...

552

NoMoePwds on 01-24-2020 02:08 PM

First published on TECHNET on Jul 15, 2014 Hey Everyone, I am back with part 2 of this 3 part series on TPM protected ce...

548

NoMoePwds on 01-24-2020 02:07 PM

First published on TECHNET on Jun 05, 2014 Hey Everyone, This is Wes Hammond with Premier Field Engineering back to shar...

492

Amer_Kamal on 01-24-2020 02:07 PM

First published on TECHNET on Apr 28, 2014 Hello All, This is Wes Hammond with Premier Field Engineering back with follo...

568

Amer_Kamal on 01-24-2020 02:06 PM

First published on TECHNET on Mar 05, 2014 Hey everyone this is Wes Hammond from Premier Field Engineering and I wanted ...

435

NoMoePwds on 01-24-2020 02:05 PM

First published on TECHNET on Feb 21, 2014 Digital certificates are a key mechanism for establishing identity on the Int...

414

Amer_Kamal on 01-24-2020 02:05 PM

First published on TECHNET on Sep 19, 2013 A common question in the field is about upgrading a certification authority r...

498

Amer_Kamal on 01-24-2020 02:05 PM

First published on TECHNET on Aug 27, 2013 Working with Internet Information Services (IIS) certificates can be a bit ch...

426

NoMoePwds on 01-24-2020 02:05 PM

First published on TECHNET on May 08, 2013 Paul Fox has uploaded a revision of his former Windows PowerShell CRL Copy sc...

418

NoMoePwds on 01-24-2020 02:05 PM

First published on TECHNET on Mar 22, 2013 Tonight I spent a couple of hours reorganizing the PKI Documentation and Refe...

490

Amer_Kamal on 01-24-2020 02:05 PM

First published on TECHNET on Mar 21, 2013 Windows Server 2012 System State Backup allows an administrator to back-up se...

462

NoMoePwds on 01-24-2020 02:02 PM

First published on TECHNET on Mar 08, 2013 I have consolidated and updated two command line utilities recently:CertreqCe...

Latest Comments

in LDAP Channel Binding and LDAP Signing Requirements - March 2020 update on 02-28-2020

Are there any details regarding the new CBT signing events 3039, 3040, and 3041 with event source Microsoft-Windows-ActiveDirectory_DomainService in the Directory Service event log? Will these events provide us a means to determine if CBT is being properly used or not? Currently we can only track un...

0 Likes

in LDAP Channel Binding and LDAP Signing Requirements - March 2020 update on 02-28-2020

@Egrechin hi, no not correct. March uodate will not change settings Future updates will not change settings All supported versions of windows have these settings. Updates for 7 and 2008R2 I imagine will work, they will receive security updates only if the have ESU Regards Alan @ PFE

0 Likes

in LDAP Channel Binding and LDAP Signing Requirements - March 2020 update on 02-28-2020

Hi @Alan La Pietra, Sorry for asking over and over but, please confirm that i understood you right.The update that will be released in the second half of 2020 will affect only supported environments:Windows 10, Windows Server 2016, Windows Server 2019 Customers which are still using Windows 7 for th...

0 Likes

in LDAP Channel Binding and LDAP Signing Requirements - March 2020 update on 02-28-2020

@sms5614 Hi, consider that March 2020 update and also future updates will make NO changes. Customer will decide how to configure these settings. We recommend to Audit all appliances/applications/devices and third-party OS which are making these types of unsecure connections and fix fix fix. Be sure ...

0 Likes

in LDAP Channel Binding and LDAP Signing Requirements - March 2020 update on 02-27-2020

I have a perhaps simplistic question. What I'm curious about are networks which have unsupported OS DCs - 2008/2008 R2 - and client workstations that are either Windows 7 with Extended Support agreements, or newer supported OSs - primarily of course builds of Windows 10. I'm unclear on how this will...

0 Likes