Posted in Featured

Deprecating NTLM is Easy and Other Lies We Tell Ourselves

Published Oct 4, 2023 | Posted in Featured

NTLM has been a problem in Windows for a while now. We're finally killing it, and I'm going to tell you how. Read Article

About Steve Syfuhs

Steve Syfuhs manages the Windows Authentication team at Microsoft.

Understanding Windows Authentication

Published Jun 13, 2022

So, you want to understand all the fiddly bits about authentication in Windows?

Read Article | Authentication

How does Remote Credential Guard Work?

Published Feb 26, 2022

Remote Credential Guard is a secure way of connecting to RDP servers.

Read Article | Windows

Windows Hello Cloud Trust

Published Feb 22, 2022

Windows Hello Cloud Trust simplifies deployment considerably.

Read Article | Windows

How Azure AD Kerberos Works

Published Dec 1, 2021

Azure AD Kerberos is a modern form of Kerberos for hybrid environments.

Read Article | Windows

On Computer Passwords

Published Sep 23, 2021

Computer accounts have passwords. Here's some facts about them.

Read Article | Authentication

A Bit About the Local Security Authority

Published Aug 5, 2021

The Local Security Authority is what oversees the security in Windows.

Read Article | Windows

MFA is Hard to do Right

Published May 7, 2021

MFA is critical to securing the world, but it's hard to do right. Here's why.

Read Article | Authentication

Killing NTLM is Hard

Published May 5, 2021

The NTLM authentication protocol just won't die.

Read Article | Windows

Lessons in Disabling RC4 in Active Directory

Published Mar 2, 2021

Customer lessons learned when disabling RC4 in Active Directory.

Read Article | Active Directory

Protecting Against Credential Theft in Windows

Published Feb 12, 2021

Going passwordless is an integral part of eliminating credential theft. Here's why.

Read Article | Authentication

How Managed Service Accounts in Active Directory Work

Published Feb 4, 2021

Managed Service Accounts in Windows allow administrators to automate password management for accounts. Here's how they work.

Read Article | Active Directory

What Happens When you Type Your Password into Windows?

Published Sep 9, 2020

Have you ever wondered what happens behind the scenes when you type your password into the Windows logon screen and hit enter?

Read Article | Windows

KDC Proxy for Remote Access

Published May 27, 2020

There's a little known feature in Windows called the KDC Proxy that lets clients communicate with KDC servers over an HTTPS channel instead of TCP.

Read Article | Authentication

On Token Binding

Published Aug 21, 2018

Token Binding is an incredibly important step in protecting your identity on the internet.

Read Article | Development

Blog:	v3.1.9+619aeb64c2
Runtime:	v9.0.0+9d5a6a9aa4