Core Infrastructure and Security Blog

Tech Community Live: Microsoft Security
Dec 03 2024, 07:00 AM - 11:30 AM (PST)
Microsoft Tech Community
Options
7,289
JerryDevore on Oct 21 2024 06:48 AM
18.8K
varghesejoji on Oct 14 2024 12:00 AM
3,078
absharan on Oct 06 2024 08:34 PM
5,413
SantoshPargi on Oct 02 2024 09:29 PM
10.9K
stevenshell on Sep 30 2024 12:10 AM
5,384
paulberg on Sep 23 2024 04:59 AM
3,073
alexeyn1 on Sep 20 2024 09:25 AM
14.4K
JerryDevore on Sep 03 2024 07:38 AM
2,310
wernerrall on Aug 30 2024 09:00 AM
5,894
absharan on Aug 28 2024 09:38 AM
2,213
wernerrall on Aug 26 2024 09:00 AM
3,751
wernerrall on Aug 23 2024 09:00 AM
8,798
jonasoh on Aug 21 2024 02:40 PM
6,125
absharan on Jul 29 2024 04:55 AM
6,474
BrunoGabrielli on Jul 22 2024 12:00 AM
5,428
BrunoGabrielli on Jul 15 2024 12:00 AM
38K
BrandonWilson on Jul 13 2024 11:18 AM
8,509
BrandonWilson on Jul 10 2024 07:59 PM
3,974
absharan on Jul 08 2024 08:54 PM
8,253
WillAftring on Jul 01 2024 05:53 AM
100K
najshahid on Jun 27 2024 01:25 PM
3,968
Heinrich_Gantenbein on Jun 24 2024 09:00 AM
5,554
wernerrall on Jun 17 2024 12:00 AM
3,956
wernerrall on Jun 10 2024 12:00 AM
32.6K
BrandonWilson on Jun 01 2024 02:19 PM
5,189
ChadMCox on May 30 2024 09:00 AM
10K
GregorWohlfarter on May 29 2024 04:23 AM
28.2K
BrandonWilson on May 27 2024 09:16 PM
4,829
wernerrall on May 20 2024 01:19 AM
4,718
arnabmitra on May 17 2024 07:27 AM

Latest Comments

in Protecting Tier 0 the Modern Way on Nov 04 2024 12:08 AM
Hi @svhelden , the tiering concept for on-premise environment is just a subset of tiering in cloud-based environments. Here, it is much more complex (as you can see at the Enterprise Access Model Securing privileged access Enterprise access model - Privileged access | Microsoft Learn). However, one ...
0 Likes
in Protecting Tier 0 the Modern Way on Nov 03 2024 11:57 PM
@testuser7 we create one Entra-group and then writeback that group under the built-in "Domain Admins" group as child-group. (member of)Interesting idea. Obviously this would make your domain security rely on Entra ID, meaning, any Entra admin could become a Tier 0 admin. Thus Entra would be part of ...
0 Likes
in Protecting Tier 0 the Modern Way on Nov 03 2024 11:44 PM
Hi @The_Goat , Every virtualization host that run T0 VM guests (e.g., Domain Controllers, Certification Authorities or EntraID Connect boxes) will automatically become Tier0. Although you can protect VM guests using hard disk encryption or even complete VM encryption, this protection will only ensur...
0 Likes
Thank you for the great writeup 
0 Likes
@BTWPS - Nice catch. Thanks for point that out. I have updated that statement with 0x38.
0 Likes