O365 with Duo MFA (Without a P1 License?)
Feb16

O365 with Duo MFA (Without a P1 License?)

Posted By on Feb 16, 2021

KB ID 0001737 Problem Working for a cloud service provider, (and a Duo partner). I get a lot of queries about Duo MFA for Office 365. Typically (I think) the best solution is to enable Azure Conditional Access and couple that with Trusted sites, so clients get challenged when out on the road, but not in the office. The drawback of this is Azure Conditional Access requires a P1 License, at time of writing that’s about $6 a month...

Read More
Free Certificate for IIS with Let’s Encrypt
Feb11

Free Certificate for IIS with Let’s Encrypt

Posted By on Feb 11, 2021

KB ID 0001736 Problem I’ve been aware of Let’s Encrypt for a while, they are a non profit Certification Authority, who will provide you with a free certificate, and you can use them for most things you want to secure with a digital certificate. The only reason I’ve never used them in the past is, their certificates have a short (3 month) lifespan, and I see enough things breaking when people forget to renew 12 month...

Read More
Outlook URL Shortening?
Feb08

Outlook URL Shortening?

Posted By on Feb 8, 2021

KB ID 0001735 Problem Outlook URL: I first noticed this a few weeks ago, When copying and pasting a URL into an email it shortens the URL and  gives it the pages title. At first i thought my firms Devs had changed  the way our CRM works, but then  I noticed it happening with SharePoint URLs as well, this is  what I mean; I don’t have a problem with it, in fact I much prefer it! However I got an email this morning from someone...

Read More
FortiGate Securing Remote Administration
Feb05

FortiGate Securing Remote Administration

Posted By on Feb 5, 2021

KB ID 0001734 Problem When considering Securing FortiGate  remote administration, I’ve written about changing the https management port to something other than TCP 443 before, I suppose that’s security by obfuscation (though even a script kiddy with one hours experience, will be able to spot an html responses).  Typically with other vendors you limit remote administration access, to specific IP addresses (or ranges). So...

Read More
FortiGate LDAPS Authentication Failure
Jan29

FortiGate LDAPS Authentication Failure

Posted By on Jan 29, 2021

KB ID 0001733 Problem Here’s a brief one that tripped me up a couple of weeks ago, I was deploying FortiGate LDAPS authentication for some FortiClient SSL VPN connections into a FortiGate firewall like so; Despite my best efforts I was getting authentication failures? If I tested the username and password in the GUI web management portal, that worked fine? Testing FortiGate LDAPS First step is to test authentication at command...

Read More