Password best practices controversy

07. December 2017 Technical 1
Last year, Microsoft published this guidance on passwords, which contains some advice that departs from traditional best practices. For example: Eliminate character composition requirements (e.g. multiple character types @, 2, A, b) Eliminate mandatory periodic resets (do not enforce expiry) The reasoning is based on Microsoft’s research, and the fact that they see billions of ...

Password best practices

04. May 2017 Business, Technical 0
Some people say passwords are dead. I don’t know if I 100% agree with that, since in actual fact and practice, we still rely on them heavily to secure access to our personal information online. The idea behind these “passwords are dead” sentiments is that a single factor of authentication is no longer “enough” on it’s own. ...

How to enable 2-factor or multi-factor authentication (2FA or MFA)

27. April 2017 Technical 1
Enabling a second factor for authentication is an important (and often very easy) thing to do.  Usually this can be accomplished in just a few clicks for most websites and cloud services. It is highly recommended that you take the time to do this, especially for any accounts that are tied to online banking, financial institutions, and ...

Warning: Domain Renames are Not Recommended (or Supported)

06. April 2017 Technical 0
I have recently run into a couple of different scenarios wherein I’ve been asked to fix domain rename operations gone awry.  After having worked through this process extensively twice now, I thought I’d post about my experience, in case this helps anyone else avoid the same troubles. To begin, you should know that in both cases, ...

Best Practices: Time synchronization with virtual Domain Controllers

23. May 2016 Technical 4
In Hyper-V virtualization, a guest virtual machine has something called “Integration Services.” By default, all of these services are pretty much enabled, including time synchronization. However, this can cause big issues if you have virtual Domain Controllers, and your physical host servers are not getting their time from a common, reliable source, such as an external NTP server like ...