• 23 Mar 2017

    Quest On Demand Migration for Email, 1.10 is now available!

    We are excited to announce a new version of On Demand Migration for Email (ODME), 1.10 has been released. Look what's new: New features and enhancements Release 1.10.0.6134 (03/16/2017) PT130294827 Support for Microsoft Exchange 2016 as a source. Release 1.10.0.5883 (03/02/2017) Rebranding On Demand Migration for Email has been rebranded as a Quest® product and is now called...
    • 22 Mar 2017

    Remediating and Mitigating Privileged Access Issues in Your Hybrid AD and Azure AD

    The challenges associated with securing data in Office 365 , whether completely cloud based or a hybrid AD iteration, are numerous, and addressing them requires a solid plan to ensure your risk of a data breach or accidental exposure is minimized. That plan begins with continually assessing permissions to ensure data is only available to those who should have access. It also requires implementation of a system that...
    • 17 Mar 2017

    Detecting and Reporting Security Issues in Hybrid AD and Azure AD—Visibility is Key

    If your organization is running Office 365 in a completely cloud-based or hybrid AD environment, it’s critical to make sure the proper security protocols are in place in both your on-premises AD and Azure AD. The first step is continuously assessing the hybrid AD to determine who has access to permissions, privileged groups, sensitive business groups, Group Policy Objects (GPO) and data at all times. Are you familiar...
    • 13 Mar 2017

    Hybrid AD and Azure AD Security Begins with Continuous Permissions Assessment

    If your organization made the jump to Office 365 and are now completely cloud based or in a hybrid AD environment, you probably spent a lot of time getting your on-premises AD ready for the move . Now that your new cloud or hybrid environment is in place and in good shape, how do you keep it secure? Maintaining security in a cloud or hybrid AD environment is no easy task. Download the Quest e-book Surviving Common...
    • 9 Mar 2017

    Securing Your On-Premises AD for Office 365 Migration

    As we previously discussed, migrating to Office 365 doubles the surface area you’ll need to manage and secure. As a result, it’s critical that any issues with data stored in your on-premises AD are corrected prior to migration. The good news is that making the move to Office 365 offers the opportunity to address any problems that exist while also creating policies that will keep it that way moving forward...
    • 8 Mar 2017

    Automate Active Directory Health Checks with the New Release of Active Administrator

    When Active Directory (AD) goes down or is unavailable for any stretch of time, consequences can be severe. AD issues can lead to end user frustration, loss of productivity, and significant burden on the IT and help desk staff while they attempt to identify and fix the issue. One would think since AD is such a business-critical system that there would be plenty of easy-to-use tools and methods available for keeping AD...
    • 7 Mar 2017

    Office 365 Security: Is On-Premises AD Your Weakest Link?

    Office 365 has more than 60 million active monthly users, and adoption of the platform is increasing—for good reason. It allows organizations to reduce infrastructure and costs related to licensing and maintenance, while expanding storage efficiencies. Additionally, Office 365 empowers workforces to operate from anywhere and from any device, while increasing scalability and business continuity. However, moving...
    • 27 Feb 2017

    Migrating to Archive Mailboxes with Quest On Demand Migration for Email

    Both Exchange and Office 365 have the option to provide users with two separate mailboxes. First, there is the normal “User Mailbox”, which is typically used on an everyday basis and is housed on high performance storage media. Second, is the “User Archive” mailbox, which is typically used only when older data needs to be referenced and can be stored on less expensive storage media. Quest On Demand...
    • 17 Feb 2017

    How to limit the amount of Cache memory used by Exchange Servers using PowerShell with applications to Rapid Recovery

    A few days ago, I was working with a MSP customer that had the same issue on multiple Exchange servers hosted by his own customers. Specifically, in that particular setup, due to the memory-hog behavior of Exchange, other applications including our own Rapid Recovery agent were not performing properly. I suggested that we may attempt reducing the Exchange memory consumption and he offered me his own company environment...
    • 13 Feb 2017

    Securing your Active Directory Environment from the Inside Out. (Part 3)

    Okay, we have identified our privileged users and determined what rights are needed for them to do their jobs. Now we need a way to enforce these new roles. Step 3: Simplify the security of your Active Directory Active Roles is an AD proxy. It will sit between the user and Active Directory and determine if the user should be performing the task or not. Since the Active Roles service account is actually making the...
    • 7 Feb 2017

    Securing your Active Directory Environment from the Inside Out. (Part 2)

    In my previous post, I touched on how you can identify users in AD with elevated rights . Now we need to determine if they're really necessary. Step 2: Identifying what rights are needed for the job. I can't begin to tell you how many companies that I've talked with who give out Domain Admin rights like candy. I've seen Sr. Admins with it, I've seen Jr. Admins with it, heck I've seen Help...
    • 3 Feb 2017

    Securing your Active Directory Environment from the Inside Out. (Part 1)

    In speaking with a lot of my customers, the topic of "How can I better secure my Active Directory environment ?" always seems to come up. There are several ways to answer this question, but today I want to focus on the one that seems to be overlooked most often: privileged user accounts. I've always compared privileged users to teenagers. Can you really trust that they're using the best judgement?...
    • 3 Feb 2017

    Investigating Account Lockouts with IT Security Search

    One of the tools that Active Directory administrators have to help mitigate brute force hacking attempts is the account lockout. Typically configured in a Group Policy, the account lockout policy tallies the number of failed authentication attempts for an account, and if it exceeds a threshold locks the account and prevents it from being used. Typically account lockouts are caused by an end user forgetting a password...
    • 31 Jan 2017

    Active Directory Management and Azure AD: A Perfect Match

    It just seemed to me a perfect superhero team like the Wonder Twins could also represent Quest Active Administrator and Microsoft Azure AD . The Quest Active Administrator is a single plane of glass tool for DNS, GPO, and AD management . The tool combines typical and advanced functions for these objects plus auditing and alerting, backup and recovery, and DC management. Just like the Wonder Twins; Quest Active Administrator...
    • 31 Jan 2017

    What's a Mailbox Collection?

    In Migration Manager for Exchange we use a collection to manage the mailboxes to be migrated. Depending on your migration plan you can use these collections for specific tasks or stages. To provide flexibility, the mailboxes to be synchronized are grouped into mailbox synchronization collections. A mailbox synchronization job can handle multiple collections. Each of these collections has its settings, including the mailbox...
    • 31 Jan 2017

    We’re Up on Office 365. What’s Next?

    Perhaps it wasn’t your decision for your organization to migrate to Office 365. Yet, the decision was made, and what followed was a significant amount of planning and heavy lifting to get your IT environment optimized (specifically Active Directory) for a cloud migration . Congratulations – you survived. What’s next? Post-migration, I generally get questions from IT professionals about the security...
    • 31 Jan 2017

    The Often Overlooked Functionality of Change Auditor

    For those who are unfamiliar with Change Auditor , it is the auditing solution offered by Quest. The solution offers a wide range of auditing capabilities to help provide a view into what changes are occurring within your environment. Unfortunately, the more I interact with my customers, the more I start to realize that very few are using the product to its full potential. I wanted to take some time to inform Change Auditor...
    • 27 Jan 2017

    Insider Threats: The Unknowns of Active Directory Security

    There are known knowns. These are things we know that we know. There are known unknowns. That is to say, there are things that we know we don't know. But there are also unknown unknowns. There are things we don't know we don't know. Donald Rumsfeld At one point in my career the security boundary was defined by the outside of the network vs the inside. We setup domains and forests with a particular architecture...
    • 27 Jan 2017

    Why Do My Permissions Reports Come Up Blank In Enterprise Reporter?

    A common question that arises soon after the initial installation of Enterprise Reporter is: “I tried to pull up a couple of permissions reports and they all came back blank. What am I missing?” The answer to this question is fairly simple- the default installation does not include permissions in the data collection. This is done intentionally to keep the collection sizes small and quick. Not all Enterprise...
    • 26 Jan 2017

    Why is my Change Auditor database so "YUGE" (huge)?

    Here are some of the questions I get about the Change Auditor database when visiting customers: Should the size of the database be relative to the size of the environment? Should the size of the database be relative to the amount of activity in my environment? Should the size of the database be relative to the company’s retention policy? Should the size of the database be relative to the Change Auditor...
    • 25 Jan 2017

    Migrating to a new Office 365 tenant? Did you know that Quest Migration Manager for Enterprise Social can migrate your Yammer data?

    In today’s ever changing business environment, companies are merging and divesting at a record pace. For Office 365 customers, this typically means migrating to a new Office 365 tenant. Quest On Demand Migration for Email can help migrate your Email, Calendar, Tasks and In-Place Archives to your new tenant, but did you know that Quest Migration Manager for Enterprise Social (MMES) can migrate your Yammer data as...
    • 25 Jan 2017

    It’s Moving Day – 4 Steps to a Painless Office 365 Migration

    After a few months of planning, completing a pre-migration assessment (Read blog post, " Office 365 Migration Ahead? Don't Pass Go Without Comprehensive Pre-Migration Assessment,”) and cleaning house on Active Directory (Read blog post, “Your 2017 Priority - Optimize AD for Office 365 ,”), the time has finally come to flip the switch on Office 365. The over-simplification of the migration...
    • 19 Jan 2017

    Your 2017 Priority – Optimize AD for Office 365

    Does your 2017 IT “To Do List” include a Microsoft Office 365 migration? If you’re preparing for a move to the cloud, you’ve probably realized that most Office 365 deployments feature synchronization between an on-premises Active Directory environment with Azure Active Directory, particularly if moving from a traditional Microsoft platform. A hybrid Active Directory environment is extremely common...
    • 17 Jan 2017

    Office 365 Migration Ahead? Don’t Pass Go Without Comprehensive Pre-Migration Assessment.

    With an Office 365 migration looming, now is not the time for a game of chance, to roll the dice and hope for the best. As we’ve seen time and again, successful, on-time and on-budget Office 365 migrations simply do not happen unless the IT team has full visibility into the IT environment that they plan to migrate. What Should I Compile for an Office 365 Pre-Migration Assessment? Download the Quest eBook: “...
    • 12 Jan 2017

    We’re Deploying Office 365. Now What?

    Major IT migrations aren’t easy. What’s especially frustrating is that while the decision to move to a new IT platform likely did not fall on the IT administrator’s plate, the responsibility for a flawless rollout does. Such is the case with an Office 365 migration , an increasingly common shift for organizations moving an on-premises Microsoft install or other enterprise messaging platform to the cloud...