RunAs Radio

• The End of NTLM with Steve Syfuhs

  It's time to retire NTLM - but how? Richard chats with Steve Syfuhs about the need and challenge of retiring an ubiquitous authentication protocol first used in the 1990s. While guidance to move away from NTLM has been available since 2010, it has only become feasible in the past couple of years, and Microsoft is now providing tooling to make the transition easier. Steve discusses enabling auditing of NTLM usage - recent improvements will allow you to view which services rely on NTLM. Sometimes, a configuration change can resolve the problem, and now there is Microsoft Negotiate to help as an intermediary in determining which protocol to use. Retiring NTLM won't happen overnight, but it will happen, and you can start preparing for it today. And if you need help or advice, email [email protected]!LinksNTLM Blocking and YouDeprecating NTLM is Easy and Other LiesMicrosoft NegotiateRemote Desktop Gateway RoleKerberos on Windows ServerThe Evolution of Windows AuthenticationRecorded September 25, 2025

  --------  

  53:50

  --------

  53:50
• Managing for Failure with Amy Norris

  How do you manage for failure? While at KCDC, Richard chatted with Amy Norris about building a culture that supports dealing with failure in a healthy way. Amy focuses on clear communication - about expectations, positive feedback, negative feedback, and more! The challenge is creating a safe place for people to ask questions and talk clearly about what they see happening in the environment. We can only get better when we can see the problems folks are having - it takes time, patience, and lots of communication to make that happen! LinksAtlas 9Recorded August 14, 2025

  --------  

  30:46

  --------

  30:46
• HaveIBeenPwned with Troy Hunt

  How do you know if one of your accounts has been part of a security breach? Richard chats with Troy Hunt about HaveIBeenPwned, a free service that allows individuals to receive notifications when their accounts appear in a security breach. Troy discusses other services available alongside HaveIBeenPwned for sysadmins, including password checking, identifying accounts associated with a specific domain, and more. When considering the cost of managing a customer with an exploited account, being able to prevent or mitigate potential risk is highly valuable. LinksHaveIBeenPwnedPark Mobile SettlementSnowflake Data BreachRecorded September 25, 2025

  --------  

  41:01

  --------

  41:01
• Managing Vendor Incidents with Mandi Walls

  You're down - is it your servers, or someone else's? While at the Kansas City Developers Conference, Richard sits down with Mandi Walls from Pager Duty about her experiences dealing with incidents involving vendor services. It might be your cloud provider, or some other SaaS element of a pipeline, or even an open-source library dependency in an important internal application that can cause a problem. What are the next steps? Mandi talks about having a software and services bill of materials so that you know what dependencies you have, where to check their status, and how to get help when you need it. Our systems are more complicated than ever - you need a plan to deal with the incidents!LinksAzure StatusSBOM ToolVendor Incidents with Jeff MartinsRecorded August 14, 2025

  --------  

  31:45

  --------

  31:45
• Certificate Automation with Todd Gardner

  The days of the one-year SSL certificate are coming to an end - are you ready? Richard chats with Todd Gardner about the upcoming requirement from the Certification Authority Browser Forum to limit SSL certs to 200 days starting March 2026 - and they keep getting shorter until by 2029, certificates will last no longer than 47 days! If you haven't already automated certificate renewal, it's time to start moving in that direction. Todd talks about CertKit as a new approach to automating certificate renewal across various services, making it much easier. Still in the experimental phase, you can be part of the process and make your certificate life easier now!LinksLet's EncryptACME Client ImplementationsThe Great SSL Certificate PanicCertification Authority Browser ForumZeroSSLtrackjsCertKitRecorded August 19, 2025

  --------  

  35:02

  --------

  35:02

Plus de podcasts Business

Podcasts tendance de Business

À propos de RunAs Radio

RunAs Radio: Podcasts du groupe