Disclaimer: The opinions expressed on this blog is a personal opinion and and do not express the opinion of my employer, Microsoft, Winsec or any other party.

Note-to-self: SearchSecurity.com’s IT security certifications guide

Sat 22 Nov 2014 Leave a comment

From: http://searchsecurity.techtarget.com/tip/SearchSecuritycom-guide-to-information-security-certifications (you need to register to free access).

“This special report offers a comprehensive review of information security industry certifications, highlighting which ones can best help you achieve goals specific to your information security career path”

I assume this report will get an 2014 update, but still the 2013 version is a valuable resource for planning security certification.

Note-to-self: Review, Refresh and Revitalize your Group Policy Skills – Updated for Server 2012

Thu 20 Nov 2014 Leave a comment

Note-to-self: understand and manage the risk posed by targeted attacks by determined adversaries

Thu 20 Nov 2014 Leave a comment


Bookmark this:

Microsoft has released a series of whitepapers that are designed to help organizations understand and manage the risk posed by targeted attacks by determined adversaries.  These papers include:

In addition, they have published a short series of videos that introduce many of the topics covered in these papers.

Full details at: http://blogs.microsoft.com/cybertrust/2013/06/13/targeted-attacks-video-series/

The shortcut below:

Introduction to Determined Adversaries and Targeted Attacks:

Mitigating Pass-the-Hash Attacks:

Anatomy of a Cyber-attack Part 1:

Anatomy of a Cyber-attack Part 2:

Importance of Securing Active Directory:

Microsoft Identity Manager Public Preview is now available! #MSIM2015 #FIM2010

Tue 18 Nov 2014 Leave a comment

Source: http://blogs.technet.com/b/ad/archive/2014/11/18/microsoft-identity-manager-preview-release-1-is-now-available.aspx

Sharon Laivand, Program Manager and Alex Simons (Twitter: @Alex_A_Simons) have announced the publication the first public preview of Microsoft Identity Manager (a.k.a. “MIM”, the product formerly known as Forefront Identity Manager).

From the announcement:

What will be new in MIM?

Our investments in MIM are grouped into three:

  • Privileged Access Management: Aimed at mitigating cyber-attacks and insider attacks which leverage the identity systems to spread in the organization. MIM will have a new set of capabilities designed to isolate, monitor and better protect the privileged users.
  • Hybrid IAM: As more and more organizations and information workers move to SaaS applications, the IAM systems expands to the cloud, but still exists on premises. Our goal is to make the cloud based and on-premises IAM systems, co-exist, and also coupled to deliver better IAM capabilities, regardless of whether the user or app being on premise or in the cloud (and this is what we call Hybrid IAM)
  • Modernization and ease of use: We are constantly updating our supported underlying server infrastructure (Windows Server, SQL, SharePoint, etc…) and improving our user experience

New in this CTP: Privileged Access Management, Isolation and elevation

To make the story PAM short, you can watch this video demo.

New in this CTP: Password Reset with Azure MFA

Short story on SSPR with MFA:  watch this video demo.

In FIM 2010 R2, the self-service password reset (SSPR) enabled two authentication gates:

  • Questions and answers
  • OTP

Now they added another authentication gate: Azure MFA.

New in this CTP: Updates to Certificate Manager

Short story: see here.

Details in source post.

New in CTP2: Modernized Supported Platforms

In addition to the new capabilities, we have extended out platform support matrix to:

  • Windows server 2012 R2
  • Sharepoint 2013
  • SQL 2014
  • Exchange 2013
  • Visual Studio 2013 (to support extension development)
  • Exchange 2013

In addition, our PAM functionalities can make use of Windows Server 10.

Categories: Security

MIM 2015 CTP published on connect. #FIM2010 #MSIM2015

Tue 11 Nov 2014 Leave a comment

Microsoft has published the CTP of Microsoft Identity Manager 2015, aka FIM vNext.
Some people reported that they could not see the item in their Connect Dashboard, while they had already registered for other FIM beta’s.

The CTP is published on the same Connect site as the FIM beta’s were published before: https://connect.microsoft.com/site433/Downloads

But you’ll need to look for the Active Directory Identity and Access Management CTP program under the Identity and Access Management product.


If you don’t see the item in your on your Connect Dashboard, try this link: Active Directory Identity and Access Management CTP (https://connect.microsoft.com/site433/MIM%202015%20CTP).
Keep in mind you need to register to Connect first.


Yesterday, a new document was published: MIM CTP Test Lab Guide for Privileged Access Management
Some more is available:

Date Titel / Category Version
10/11/2014 MIM CTP Test Lab Guide for Privileged Access Management  November 10, 2014
Category: Document
4/11/2014 MIM 2015 SSPR and MFA Test Lab Guide  October 2014
Category: Document
28/10/2014 MIM 2015 Public CTP for PAM and SSPR  October 28, 2014
Category: Build
20/10/2014 MIM 2015 CTP for CM  October 2014
Category: Build
20/10/2014 MIM 2015 CTP CM Test Lab Guides  October 2014
Category: Document

If you need more information, check the information published on TechEd 2014, published on Channel 9 a few days ago:


Privileged Access Management for Active Directory

Note-to-self: Internet, privacy and copyright (blogs, #TNWIKI, …)

Wed 5 Nov 2014 Leave a comment

Sources for #AADSync starters

Wed 29 Oct 2014 Leave a comment

I’ve collected some interesting base resources for getting started with AAD Sync at : http://aka.ms/aadsyncstarter

Feel free to comment or suggest other resources to be added.


Get every new post delivered to your Inbox.

Join 54 other followers