Tag Archives: Azure Active Directory

AZURE AD Connect Release 1.6.4.0 is available and moves synchronization to new Azure AD V2 endpoint and fixed a Bug in 1.6.2.4

Update 1 – 31/032021

Microsoft released the new v. 1.6.4.0 this fixed a bug in the previous release 1.6.2.4, because after upgrade to that release, the Azure AD Connect Health feature was not registered correctly and did not work. When you installed 1.6.2.4 please do a upgrade to the new 1.6.4.0 release.

Microsoft has released a new Version of Azure AD Connect. The new release going a big step forward from 1.5.4.5 to 1.6.2.4 and brings a lots of improvements and changes.

Please note:

This release changes the sync process to the new Azure AD V2 endpoint and is not supported for the German national cloud, the Chinese national cloud and the US government cloud. Please be aware of this notes and only use this version in Global Cloud Tenants or switch back to V1 endpoint, when you install this version in National Cloud environments.

I install the new relase on the weekend for a customer, because of changing the Azure AD Connect server. The new relase allows to import settings from a previous version. The new relase brings a lot of new features:

  • This release defaults the AADConnect server to the new V2 end point
  • This release require a full sync after installation
  • This version changes the synchronization to the new Azure AD V2 endpoint
  • This release is only supported for Global Cloud user – if you using National cloud environments, please take a look at the MS Docs article for futher details
Continue reading AZURE AD Connect Release 1.6.4.0 is available and moves synchronization to new Azure AD V2 endpoint and fixed a Bug in 1.6.2.4

Speaking at WVD Tech Fest 2021 about Azure Files

Due do the covid pandamy, many organizations in Germany are in a challenging phase as many employees need to be given the opportunity to work from home. Many companies have not yet made this option available to their employees, or only to a few. Microsoft has created a new option with Windows Virtual Desktop to give employees the ability to work from anywhere and the clients are always hosted in Azure and accessible via an app or browser.

I am very happy to have received an invitation to the WVD Tech Fest. The first conference only focusing on WVD with three parallel tracks around everything you need to know about Windows Virtual Desktop. The agenda is pretty complete and the organizers Simon Binder and Patrick Köhler are doing a great job. The conference will take place on 25/02/21 and is free. So take a look at the Website, plan your Agenda and grab your Ticket.

Azure Files is one of my favorite topics and due to many WVD projects in the past, I will address the question is Azure Files the optimal WVD profile store solution. And I can say: it depends – but you will learn more in my session on Thursday between 10:50 – 11:20 AM 🙂

Take this oppurtunity to learn more about Windows Virtual Desktop and hopefully this can be a solution for your organization to enable more people to work from anywhere and get everyone safely through these challenging time. I hope to see many of you there 🙂

Speaking with Thomas Naunheim at GermanyClouds Meetup about Azure Governance Best Practices

In the past Thomas Naunheim and I do a lot of architecture and designing prinicple for integrating Azure in company environments. We have the idea to create a Azure Governance Best Practices session in the last couple of months to give the community our insights and best practices for Starting/Integrating Azure environments. The goal is to give you insights, where you can find the best documentations to start with a Cloud journey and which technical Azure features help to bring and hold your environment in an compliant and secure state.

The session contains the following topics:

  • Cloud Adoption Framework
  • Well-architecture Framework
  • Insights about Azure Policies and Azure Security Center
  • Azure Enterprise Scale architecture
  • Azure Ops
  • Identity and Access Management

We are exited to hold the session at the GermanyClouds Meetup on november 26. Did you interested in this topics or you are in the beginning or implementig phase, join us. We will happy to see you there and get your questions.

The session will not been recorded.

IdentitySummit 2020 is over – Thank you

Our 1st IdentitySummit is over and we had a amazing Summit with our powerfull Speakers and our attendees.

We (Azure Bonn Orga Team) started planning the Summit in March 2020. The Orga Team from the AzureBonn Meetup consists of Melanie Eibl, Thomas Naunheim and René de la Motte. The idea came from Thomas (our Identity Expert) and we can say that was a wonderful idea.

We meet together at the Debeka Innovation Center (DICE) in Koblenz to organize and streaming all the sessions from one central place. The current Corona situation has unfortunately not made a complete live event possible, so we have met under the rules in force to ensure a smooth process and bring a little live feeling.

Now after 6 session in 2 parallel Tracks we can say it was worth every minute of planning – Why?

The answer is simple: First of all because of our great speakers. Each session was planned with a minimum of 300, and each session went deep into the relevant topics, showing what needs to be considered, the pitfalls and best practices available.

Continue reading IdentitySummit 2020 is over – Thank you

CONFIGURE AZURE FILES ON-PREMISES ACTIVE DIRECTORY (AD DS) AUTHENTICATION FOR FILESERVER OR WVD

Update 2

Please note: This article is replaced by All you need to know about Azure Files SMB authentication via Active Directory Domain Services.

Update 1

Azure Files on-premises Active Directory Domain Services authentication is since 11/06/20 GA. The article is upgraded and integrated the latest features and improvements.

Update 2

12/06/20 Azure Files Hybrid PowerShell Module upgrate to v. 0.2.0

In the past I had a lot of talks about Azure File Sync, a lightwight solutions to sync servers from different locations and branches via Azure Files. One often questions was, it is possible to use Azure Files directly with integrated on-premises Active Directory (AD DS) authentication – the great answer since a few days is Yes, this is possible.

Now you can use Azure Files with on-premises Active Directory authentication as a fully replacement for Fileservers. No need for Azure Active Directory Domain Services (Azure AD DS) or different settings on Azure Files. This gives great new ways to use Azure Files as an replacement for Windows based fileservers or for using as an profile store for Windows Virtual Desktop and come closer to a cloud native solution.

In this article I will explain how Azure files AD DS authentication works, how to configure it, some basic steps and more. Please feel free to use the comment section or Twitter to get in touch with me and give me feedback or ask questions.

Continue reading CONFIGURE AZURE FILES ON-PREMISES ACTIVE DIRECTORY (AD DS) AUTHENTICATION FOR FILESERVER OR WVD

How I pass the Azure Security Exam Az-500

In the past I have taken several Azure exams, and yesterday I took the Azure Security exam Az-500. I am really glad that I passed the exam. In this article I will give you a brief overview of the topics I saw in the exam and what materials I used to prepare for the exam. I can say directly that the best way to succeed in the exam is practice.

Continue reading How I pass the Azure Security Exam Az-500

Setup Passwordless login FĂĽr Azure & Microsoft365 mit yubico 5 und FIDO2

Vor einigen Wochen hat Yubico zahlreiche Passwordless-Kits kostenlos zur VerfĂĽgung gestellt. Um weitere Menschen von den zahlreichen Vorteilen des Passwordless Logins mit dem integrierten FIDO (Fast IDentity Online) Standard, in Yubico Devices, zu ĂĽberzeugen. Vor ein paar Tagen habe ich mein Starterpaket erhalten – an dieser Stelle vielen Dank fĂĽr die Zusendung. Das Starterpaket enthielt direkt 2 Keys den YubiKey 5 NFC (USB + NFC) und den YubiKey 5C (USB Type-C). Direkt nach dem Erhalt habe ich mit der Einrichtung begonnen – die sich sehr einfach gestaltet.

Dieser Artikel stellt die Voraussetzungen und die Konfiguration des Azure Active Directorys vor, um die Kennwortlose (Passwordless) Funktion zu nutzen.

Continue reading Setup Passwordless login FĂĽr Azure & Microsoft365 mit yubico 5 und FIDO2

Azure Management Groups und Blueprints – Ăśberblick und Einrichtung – Teil 1

Der Weg in die Cloud ist eigentlich simpel, ein Konto im Azure Portal angelegt, die Kreditkartendaten hinterlegt und schon können alle verfügbaren Azure Ressourcen ausgerollt werden. Dies mag für Testumgebungen durchaus ein möglicher (wenn auch nicht empfohlener) weg sein. Für Produktiv Workloads, unabhängig ob Cloud only oder Hybrid-Szenario, sind Regeln erforderlich und sinnvoll. Um die Umgebung zu Strukturieren, um Kostenexplosionen zu vermeiden und um die Umgebung abzusichern.

Solche Richtlinien und Regeln lassen sich mit einem Governance Konzept erstellen und festlegen. So können bereits simple Fragen, wie ein zentrales Namensschema für Azure Services, das Design der Netzwerke oder die maximal erlaubten VM-Größen, geklärt werden. Ein Governance Konzept ist für den gesamten Tenant gedacht und damit Subscriptions übergreifend gültig. Die Subscriptions wiederrum eignen sich um unterschiedliche Kostenstellen zu erfassen oder Projektgrenzen zu definieren.

Bisher war es nicht einfach möglich, zentrale Einstellungen für neue Subscriptions vorzugeben. Dies hat sich mit der Einführung von Azure Blueprints geändert. Mit Azure Blueprints lassen sich zentrale Einstellungen vorgeben, die beim Rollout einer neuen Subscription auf diese angewandt werden. Um Azure Blueprints einsetzen zu können sind Management Groups notwendig. Management Groups geben die Möglichkeit den Azure Tenant aus Organisatorischer Sicht zu strukturieren.

Dieser zweiteilige Beitrag wird zunächst die notwendigen Management Groups als Voraussetzungen von Azure Blueprints erläutern und anschließend die Möglichkeiten von Azure Blueprints und deren Rollout vorstellen.

Continue reading Azure Management Groups und Blueprints – Ăśberblick und Einrichtung – Teil 1

Azure Saturday Berlin Recap and Azure File Sync Slides

After a great week I sitting in the airplane back on my way to cologne. Yesterday was the first Azure Saturday in Berlin and I was invited to hold a session about Azure File Sync. It was a great session with lot´s of questions, ideas and discussion about the benefits from using Azure File Sync. So I often had to watch the clock so I stayed within the time 🙂

Continue reading Azure Saturday Berlin Recap and Azure File Sync Slides

MCTGlobal Summit – AFS and WAC Session slides

What a month, after I speak on Cloud Camp in Dublin last week, I have the pleasure to hold a session at the MCT Global Summit in Phantasialand BrĂĽhl near Cologne.

The MCT Global Summit is a one week conference and a place where a lots of Microsoft Trainer can be meet. So you have the chance to discuss your challenges and ideas with a lot of experts. 

I have the pleasure to hold a session about Windows Admin Center – The nextgen Servermanagement on Tuesday and, a day later, a Session to Azure File Sync – Your Cloud Fileserver.

MCT Summit - Azure File Sync Session
MCT Summit – Azure File Sync Session

Both session was with some discussion and a lots of questions. Thank you for joing my session on the great MCT Global Summit 2018. Wish you a great week and hope to see you on the next year again.

MCT Summit - Phantasialand
MCT Summit – Phantasialand

Windows Admin Center Session

Here you find the slides for my Windows Admin Center Session. Below there is a list of sources that I have used, to prepare my session.

Azure File Sync Session

The slides for my Azure File Sync session are ready for download on Github.

Below you can find the sources that I´ve used for preparing my Azure File Sync session.

rhdr