From: http://searchsecurity.techtarget.com/tip/SearchSecuritycom-guide-to-information-security-certifications (you need to register to free access).
“This special report offers a comprehensive review of information security industry certifications, highlighting which ones can best help you achieve goals specific to your information security career path”
I assume this report will get an 2014 update, but still the 2013 version is a valuable resource for planning security certification.
Windows Server 2012 Group Policy Guide.pdf
Microsoft has released a series of whitepapers that are designed to help organizations understand and manage the risk posed by targeted attacks by determined adversaries. These papers include:
In addition, they have published a short series of videos that introduce many of the topics covered in these papers.
The shortcut below:
Introduction to Determined Adversaries and Targeted Attacks:
Mitigating Pass-the-Hash Attacks:
Anatomy of a Cyber-attack Part 1:
Anatomy of a Cyber-attack Part 2:
Importance of Securing Active Directory:
Sharon Laivand, Program Manager and Alex Simons (Twitter: @Alex_A_Simons) have announced the publication the first public preview of Microsoft Identity Manager (a.k.a. “MIM”, the product formerly known as Forefront Identity Manager).
From the announcement:
What will be new in MIM?
Our investments in MIM are grouped into three:
Privileged Access Management: Aimed at mitigating cyber-attacks and insider attacks which leverage the identity systems to spread in the organization. MIM will have a new set of capabilities designed to isolate, monitor and better protect the privileged users.
Hybrid IAM: As more and more organizations and information workers move to SaaS applications, the IAM systems expands to the cloud, but still exists on premises. Our goal is to make the cloud based and on-premises IAM systems, co-exist, and also coupled to deliver better IAM capabilities, regardless of whether the user or app being on premise or in the cloud (and this is what we call Hybrid IAM)
Modernization and ease of use: We are constantly updating our supported underlying server infrastructure (Windows Server, SQL, SharePoint, etc…) and improving our user experience
New in this CTP: Privileged Access Management, Isolation and elevation
To make the story PAM short, you can watch this video demo.
New in this CTP: Password Reset with Azure MFA
Short story on SSPR with MFA: watch this video demo.
In FIM 2010 R2, the self-service password reset (SSPR) enabled two authentication gates:
- Questions and answers
Now they added another authentication gate: Azure MFA.
New in this CTP: Updates to Certificate Manager
Short story: see here.
Details in source post.
New in CTP2: Modernized Supported Platforms
In addition to the new capabilities, we have extended out platform support matrix to:
- Windows server 2012 R2
- Sharepoint 2013
- SQL 2014
- Exchange 2013
- Visual Studio 2013 (to support extension development)
- Exchange 2013
In addition, our PAM functionalities can make use of Windows Server 10.
Microsoft has published the CTP of Microsoft Identity Manager 2015, aka FIM vNext.
Some people reported that they could not see the item in their Connect Dashboard, while they had already registered for other FIM beta’s.
The CTP is published on the same Connect site as the FIM beta’s were published before: https://connect.microsoft.com/site433/Downloads
But you’ll need to look for the Active Directory Identity and Access Management CTP program under the Identity and Access Management product.
If you don’t see the item in your on your Connect Dashboard, try this link: Active Directory Identity and Access Management CTP (https://connect.microsoft.com/site433/MIM%202015%20CTP).
Keep in mind you need to register to Connect first.
Yesterday, a new document was published: MIM CTP Test Lab Guide for Privileged Access Management
Some more is available:
|Date||Titel / Category||Version|
|10/11/2014||MIM CTP Test Lab Guide for Privileged Access Management||November 10, 2014|
|4/11/2014||MIM 2015 SSPR and MFA Test Lab Guide||October 2014|
|28/10/2014||MIM 2015 Public CTP for PAM and SSPR||October 28, 2014|
|20/10/2014||MIM 2015 CTP for CM||October 2014|
|20/10/2014||MIM 2015 CTP CM Test Lab Guides||October 2014|
If you need more information, check the information published on TechEd 2014, published on Channel 9 a few days ago:
While working on TechNet Wiki Governance, I stumbled into some useful links.
Saving it to my external memory for quick reference:
- Writing a Blog Disclaimer
- What Do You Do When Someone Steals Your Content
- 10 Big Myths about copyright explained
- Copyright Crash Course.