Protecting Against Credential Theft in Windows Published Feb 12, 2021 | Authentication Going passwordless is an integral part of eliminating credential theft. Here's why. Read Article About Steve Syfuhs Steve Syfuhs (right) is a developer on the Azure Active Directory team at Microsoft building authentication services with a focus on Windows security. Read More about Steve Twitter: https://twitter.com/stevesyfuhs Github: https://github.com/SteveSyfuhs
How Managed Service Accounts in Active Directory Work Published Feb 4, 2021 Managed Service Accounts in Windows allow administrators to automate password management for accounts. Here's how they work. Read Article | Active Directory
OPS108: Windows authentication internals in a hybrid world Published Feb 2, 2021 I recently recorded a presentation on the internals of hybrid Windows authentication. Go watch it. Read Article | Windows
Identity Delegation in Active Directory Published Jan 26, 2021 Active Directory delegation is an often misunderstood technology. Here's an in-depth look at how it works. Read Article | Security
Hybrid Authentication with FIDO Published Jan 19, 2021 FIDO is how we're tackling passwordless authentication. Have you ever wondered how it works? Read Article | Windows
Kerberos FAST Armoring Published Jan 16, 2021 FAST Armoring is a Kerberos extension intended to improve the security of the Kerberos protocol. Read Article | Kerberos
How Windows Defender Credential Guard Works Published Dec 1, 2020 Have you ever wondered how Credential Guard works? Read Article | Windows
Windows and Domain Trusts Published Nov 24, 2020 Domain trusts are complicated. Here's how they work. Read Article | Windows
How Windows Single Sign-On Works Published Nov 18, 2020 Have you ever wondered how Windows does Single Sign-on? Read Article | Windows
Windows Insider Podcast: Ctrl+Alt+Authenticate Published Nov 11, 2020 I was interviewed by Jason Howard from the Windows Insider team and we talked about Windows Authentication and stuff. Read Article | Authentication
How Azure AD Windows Sign-in Works Published Sep 22, 2020 Let's talk Azure AD join and what that means to a Windows device. What's it mean to be joined to something? Read Article | Kerberos
Kerberos Explained in a Little Too Much Detail Published Sep 15, 2020 Kerberos is an authenticated key agreement protocol based on the Needham-Schroeder protocol. That's too complicated -- let's break it down a little. Read Article | Kerberos
How Authentication Works when you use Remote Desktop Published Sep 9, 2020 Have you ever wondered how authentication works for things like Remote Desktop? Read Article | Windows
What Happens When you Type Your Password into Windows? Published Sep 9, 2020 Have you ever wondered what happens behind the scenes when you type your password into the Windows logon screen and hit enter? Read Article | Windows
KDC Proxy for Remote Access Published May 27, 2020 There's a little known feature in Windows called the KDC Proxy that lets clients communicate with KDC servers over an HTTPS channel instead of TCP. Read Article | Authentication