Recent Blog ArticlesMost RecentMost LikesRe: Protecting Tier 0 the Modern Way Hithomasbiebledv-bvde, even if the status is set to "supported" only, the result may be failing requests. supported - Requires sufficient domain controllers running Windows Server 2012 t...Re: Onboard to Azure Arc with Security in Mind That's the type of article I like most: very technical, what-happens-behind-the-scenes information. Thanks for taking the time to put this together! Re: Protecting Tier 0 the Modern Way Hi Deji, thanks for your remarks and sharing your thoughts. What is described in the paragraph you mentioned, is simply what we see in most customer environments: all VMs are treated the ...Protecting Tier 0 the Modern Way Almost every attack on Active Directory you hear about today – no matter if ransomware is involved or not – (ab)uses credential theft techniques as the key factor for successful compromise. Microsoft...The Nightmare of Validating Certificate Requests At CRSP we help customers to recover from different types of cyber security incidents. This means that we help more or less with wherever help is needed (from hardening AD and AAD, to restoring Excha...Re: Intune - Enrollment Options for End-Entity Certificates James, this is an excellent question, but I honestly do not know. Sorry. NDES Security Best Practices NDES (Network Device Enrollment Server) - if misconfigured or not secured and hardened properly - can be a door opener for the compromise of an Active Directory. Re: Intune - Enrollment Options for End-Entity Certificates Hi Fabian, thanks for your feedback! I agree, no pre-authentication is possible when publishing NDES via Azure Application Proxy and I am not aware of any planned changes. Best regards, ...Intune - Enrollment Options for End-Entity Certificates Intune supports three different methods to provision certificates to devices or users (SCEP/NDES, PKCS and Imported PKCS).The following article tries to explain the different methods in terms of sec...
MicrosoftMicrosoftMicrosoftMicrosoft
