Ignite 2018 - Windows Server 2019 Security and Identity Session Recordings

Continuing with another post of Windows Server 2019 sessions from Ignite, this one includes some of the security and identity sessions. There will be coverage of additional hybrid Active Directory sessions in an upcoming post, but I've included the AD FS ones here alongside the security recordings.

Elevating your security posture with Windows Server 2019

Windows Server 2016 started the journey helping customers elevate their security posture starting with the operating system. Windows Server 2019 brings many enhancements to these features as well as a whole new set of capabilities. This session provides a rich overview of many of the security capabilities that are built-in to Windows Server with a specific focus on what’s new to Windows Server 2019.  The National Institute for Standards and Technology (NIST) will also join us to discuss Microsoft’s participation in their trusted cloud project which outlines security best practices for hybrid clouds--a solution built on Hyper-V Shielded VMs. Additionally, the SQL Server team will demonstrate how they leverage Virtualization-based Security and health attestation in Windows Server 2019 to protect data at rest and at runtime in their imminent release of SQL Always Encrypted with Enclaves.

What's new in Active Directory Federation Services (AD FS) in Windows Server 2019

Active Directory Federation Services (AD FS) continues to be the #1 federation provider to login to Office 365 and has grown to power logins for over 77M users globally! AD FS is also actively used to build modern applications to power the next generation of line-of-business applications that cater to the digital transformation for modern workplaces. Learn about the exciting new and upcoming capabilities in Windows Server 2019 to securely and seamlessly sign-in users from anywhere on a variety of devices. We primarily focus on securing extranet access and enabling logins without passwords, and discuss additional security features to protect password-based logins for extranet access. We focus on new capabilities introduced to support modern applications built using OpenID Connect and OAuth. We also discuss advances made to enable smooth sign-in experiences for end users.

There are no compensating controls for an insecure Active Directory

Today everything needs to be secure, but you need to start with Active Directory. Because if AD isn’t secure – nothing else in your organization is regardless of operating system, products, or procedures. That’s a strong statement, but one that Randy Franklin Smith can back up with facts. In this fast-paced session Randy spotlights the multitudinous ways that virtually any component or information on your network can be compromised if the attacker first gains unauthorized access to AD. The good news is AD was designed well and has stood the test of time. AD security is a matter of design, comprehensive management, and monitoring and is the basis for the list of fundamentals for securing AD shared in this session.

Secure access to Office 365/Azure Active Directory with new features in AD FS in Windows Server 2019

Active Directory Federation Services (AD FS) continues to be the #1 federation provider to login to Office 365 and has grown to power logins for over 77M users globally! In this session, learn about the exciting new and upcoming capabilities in Windows Server 2019 to securely and seamlessly sign in users from anywhere on a variety of devices. We primarily focus on securing extranet access and enabling logins without passwords, and discuss additional security features to protect password-based logins for extranet access. We focus on the new Azure AD Password Protection feature to ensure strong passwords for all users. We also discuss advances made to enable smooth sign-in experiences for end users.