Wednesday, November 19, 2014

Vulnerability in Kerberos Could Allow Elevation of Privilege

Source -

Microsoft Security Bulletin MS14-068 – Critical

Vulnerability in Kerberos Could Allow Elevation of Privilege (3011780)

This security update resolves a privately reported vulnerability in Microsoft Windows Kerberos KDC that could allow an attacker to elevate unprivileged domain user account privileges to those of the domain administrator account. An attacker could use these elevated privileges to compromise any computer in the domain, including domain controllers. An attacker must have valid domain credentials to exploit this vulnerability. The affected component is available remotely to users who have standard user accounts with domain credentials; this is not the case for users with local account credentials only. When this security bulletin was issued, Microsoft was aware of limited, targeted attacks that attempt to exploit this vulnerability.

This security update is rated Critical for all supported editions of Windows Server 2003, Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, and Windows Server 2012 R2. The update is also being provided on a defense-in-depth basis for all supported editions of Windows Vista, Windows 7, Windows 8, and Windows 8.1. For more information, see the Affected Software section.

The security update addresses the vulnerability by correcting signature verification behavior in Windows implementations of Kerberos. For more information about the vulnerability, see the Frequently Asked Questions (FAQ) subsection for the specific vulnerability.

For more information about this update, see Microsoft Knowledge Base Article 3011780.


Read more at source -

Thursday, October 23, 2014

Microsoft to drop Nokia name from smartphones

Source -

(Reuters) - Microsoft Corp looks set to ditch the Nokia name from its Lumia range of smartphones just months after buying the Finnish company's handset business.

According to a post on Nokia France's Facebook page on Tuesday, the page will change its name to Microsoft Lumia "in the coming days." (here)

Microsoft declined comment.

Under the terms of the $7.2 billion deal, which was struck in September 2013 and completed in April, Microsoft acquired Nokia's handset business, though not the name of the company itself.

Finland's Nokia continues as a networks, mapping and technology licensing company. It owns and manages the Nokia brand and only licenses it to Microsoft.

Microsoft has said in the past it plans to license the Nokia brand for its lower-end mobile phones for 10 years and to use the name on its smartphones only for a "limited" time, without saying how long that might be.


Read more at source -

Azure Directory Sync - Global Admin and Multifactor Authentication

I was trying configure Azure directory synchronization and it was keep failing with “The use name or password is incorrect.  Verify you name, and then type your password again.” error message.



I knew that the user name and password are correct.  For some other testing purpose I enabled Multi-Factor Authentication on this account that was causing the issue. Everything started working after disabling MFA on this account. 


Wednesday, October 22, 2014

Directory Sync, Sync with Password Sync and Single Sign-On Scenarios

Here is good article on describing the functionalities and difference between Directory Sync, Directory Sync with Password Sync and  Directory Sync with Single Sign-On Scenarios.


Monday, October 20, 2014

Microsoft Plans To Launch A Wearable Device

Source -

Microsoft Microsoft is gearing up to launch a wearable device within the next few weeks, Forbes has learned. The gadget is a smart watch that will passively track a wearer’s heart rate and work across different mobile platforms. It will also boast a battery life of more than two days of regular use, sources close to the project say.

That could put it ahead of Samsung’s Galaxy Gear smart watch and Moto 360 which both need to be charged around once a day. The wearable will hit stores soon after launch in a bid to capture the lucrative holiday season, a timeline Apple Apple was reportedly targeting before it delayed its own Watch to early 2015.

Forbes first reported in May that Microsoft was working on a smart watch that drew on optical engineering expertise from its Kinect division, and which would sync with iPhones, Android devices and Windows Phones. It is unclear what Microsoft will name the device, or what it will cost at retail.

A wearable would mark the company’s first foray into a new device category under CEO Satya Nadella. Wearable tech is still uncharted territory, despite offerings from Samsung and the forthcoming Apple Watch. It’s a market predicted to be worth $7.1 billion in 2015.

Read more at source -

Thursday, October 16, 2014

Microsoft Infrastructure as a Service Storage Foundations

Source -

1 Introduction

The goal of the Infrastructure-as-a-Service (IaaS) Foundations series is to help enterprise IT and cloud service providers understand, develop, and implement IaaS infrastructures. This series provides comprehensive conceptual background, a reference architecture and a reference implementation that combines Microsoft software, consolidated guidance, and validated configurations with partner technologies such as compute, network, and storage architectures, in addition to value-added software features.

The IaaS Foundations Series utilizes the core capabilities of the Windows Server operating system, Hyper-V, System Center, Windows Azure Pack and Microsoft Azure to deliver on-premises and hybrid cloud infrastructure as a service offerings.

As part of Microsoft IaaS Foundations series, this document discusses the storage infrastructure components that are relevant for a Microsoft IaaS infrastructure and provides guidelines and requirements for building a storage infrastructure using Microsoft products and technologies. These components can be used to compose an IaaS solution based on private clouds, public clouds (for example, in a hosting service provider environment) or hybrid clouds. Each major section of this document will include sub-sections on private, public and hybrid infrastructure elements.Discussions of public cloud components are scoped to Microsoft Azure services and capabilities.

2.0 On-Premises

The following sections discuss storage options and capabilities that can be included in an on-premises IaaS design. Note that these on-premises options are also pertinent to cloud service providers interested in delivering a commercial IaaS offering.

2.1 Drive Architectures

The type of hard drives in the host server or in a storage array that are used by the file servers have significant impact on the overall performance of the storage architecture. The critical performance factors for hard drives are:

  • The interface architecture (for example, SAS or SATA)
  • The rotational speed of the drive (for example, 10K, or 15K RPM) or a solid-state drive (SSD) that does not have moving parts
  • The Read and Write speed
  • The average latency in milliseconds (ms)


Read more at source -

Monday, October 13, 2014

Active Directory Migration Service (ADMS) From Microsoft

Active Directory Migration Service (ADMS) is a could based Active Directory migration service (not a solution) from Microsoft.  Behind the scene they are using ADMT and FIM.  Directory synchronization was a big drawback of ADMT.  The combination of ADMT and FIM can overcome all these challenges.

Also, the self migration portal provides an end user driver migration option. 


You can see a demo on the Channel9 site -

Wednesday, October 8, 2014

Microsoft tightens integration between Outlook Web App and OneDrive for Business

Source -

Microsoft wants to promote the use of OneDrive for Business among Office 365 customers, so it’s building links between the work cloud storage service and Outlook Web App (OWA), the suite’s browser-based email interface.

Over the coming weeks, Microsoft will roll out an option in OWA’s interface to attach OneDrive for Business URL links to messages, in addition to the conventional option of attaching files stored in the sender’s hard drive.

When email recipients click on the OneDrive for Business link, they’re taken to a file hosted in Microsoft data centers, so that they and their colleagues can co-edit the document using Office Online—the browser-based version of the Office productivity apps suite—and see each other’s changes


Read more at source -

Tuesday, October 7, 2014

Hybrid Connection Manager ClickOnce Application

Source -

Hybrid Connections provides an easy and convenient way to connect Azure Websites and Azure Mobile Services to on-premises resources.

Hybrid Connections

Download -

Monday, October 6, 2014

Microsoft Azure gets security tick from Australian government

Source -

In the lead up to the public availability of Microsoft Azure in Australia at the end of the year, Microsoft has announced that its cloud platform has been recognised for being compliant with the Australian government's security requirements.

A four-month assessment of the Microsoft Azure service was conducted from June to September 2014 by Foresight Consulting. The industry security-registered assessors program compliance assessment is consistent with processes prescribed in the Australian government information security manual (ISM) and protective security policy framework.

James Kavanagh, Microsoft Australia chief security advisor, said that receiving a letter of compliance is "one of the last milestones" for the company before Australian Microsoft Azure geo is released for general availability, and it demonstrates the company's commitment to protecting customer data "to the very highest level".

Read more at source -

Popular Posts


Twitter Delicious Facebook Digg Stumbleupon Favorites More