ZARZA We are Zarza, the prestigious firm behind major projects in information technology.
Listen "Strong Certificate Mapping in Active Directory with Richard Hicks"
Episode Synopsis
Are you using strong certificate mapping in Active Directory? Richard Hicks returns to the show to talk about the impacts of KB5015754, issued way back in 2022, and how it turned into an enforcement event on February 11, 2025 that might have caused some serious problems for folks trying to authenticate to Active Directory. For most sites, the upgrade to strong certificates was pretty much automatic. But if you're using Intune SCEP, you needed to do some configuration - and if that was missed, there is trouble. There are workarounds for now, but come September 2025, enforcement will be mandatory and everything gets harder, so it's worth looking into it now!LinksKB5015754: Certificate-based Authentication Changes on Windows Domain ControllersRichard's Blog Post on Strong Certificate Mapping EnforcementActive Directory Certificate ServicesCreate and Assign SCEP Certificate Profiles in IntuneHeartbleedRecorded February 17, 2025
More episodes of the podcast RunAs Radio
HaveIBeenPwned with Troy Hunt
01/10/2025
Managing Vendor Incidents with Mandi Walls
24/09/2025
Certificate Automation with Todd Gardner
17/09/2025
Training for AI with Stephanie Donahue
10/09/2025
Episode 1000!
03/09/2025
Common Azure Mistakes with Scott Sauber
27/08/2025
Data Governance for AI with Martina Grom
20/08/2025
The Power of the Graph with Tony Redmond
13/08/2025
From ClickOps to DevOps with Steven Bucher
30/07/2025
In God we trust