Posted in Kerberos

How Azure AD Kerberos Works

Published Dec 1, 2021 | Posted in Windows

Azure AD Kerberos is a modern form of Kerberos for hybrid environments. Read Article

About Steve Syfuhs

Steve Syfuhs manages the Windows Authentication team at Microsoft.

Improvements in Windows Kerberos Architecture

Published Apr 14, 2023

We rewrote the cryptographic services of Kerberos in Windows.

Read Article | Kerberos

Kerberos Event ID 27

Published Nov 24, 2022

Windows system Event 27 is raised when Kerberos can't find a key.

Read Article | Windows

Why We Built Azure AD Kerberos

Published Dec 2, 2021

Why do we need Azure AD Kerberos?

Read Article | Authentication

Lessons in Disabling RC4 in Active Directory

Published Mar 2, 2021

Customer lessons learned when disabling RC4 in Active Directory.

Read Article | Active Directory

OPS108: Windows authentication internals in a hybrid world

Published Feb 2, 2021

I recently recorded a presentation on the internals of hybrid Windows authentication. Go watch it.

Read Article | Windows

Identity Delegation in Active Directory

Published Jan 26, 2021

Active Directory delegation is an often misunderstood technology. Here's an in-depth look at how it works.

Read Article | Security

Preventing UAC Bypass through Kerberos Loopback

Published Jan 21, 2021

User Account Control is a local authorization mechanism. Can you bypass it by going through the network? No. Here's why.

Read Article | Windows

Hybrid Authentication with FIDO

Published Jan 19, 2021

FIDO is how we're tackling passwordless authentication. Have you ever wondered how it works?

Read Article | Windows

Kerberos FAST Armoring

Published Jan 16, 2021

FAST Armoring is a Kerberos extension intended to improve the security of the Kerberos protocol.

Read Article | Kerberos

Windows and Domain Trusts

Published Nov 24, 2020

Domain trusts are complicated. Here's how they work.

Read Article | Windows

How Azure AD Windows Sign-in Works

Published Sep 22, 2020

Let's talk Azure AD join and what that means to a Windows device. What's it mean to be joined to something?

Read Article | Kerberos

Kerberos Explained in a Little Too Much Detail

Published Sep 15, 2020

Kerberos is an authenticated key agreement protocol based on the Needham-Schroeder protocol. That's too complicated -- let's break it down a little.

Read Article | Kerberos

How Authentication Works when you use Remote Desktop

Published Sep 9, 2020

Have you ever wondered how authentication works for things like Remote Desktop?

Read Article | Windows

What Happens When you Type Your Password into Windows?

Published Sep 9, 2020

Have you ever wondered what happens behind the scenes when you type your password into the Windows logon screen and hit enter?

Read Article | Windows

Blog:	v3.1.9+619aeb64c2
Runtime:	v9.0.0+9d5a6a9aa4