Microsoft has IT security the first time, but then it is a new solution for big losses in the future. Anfang bis Mitte September Gab es erneut einen Sicherheitszwischenfall: Protokolldaten sind den Redmondern verloren gegangen, die für IT-Scherheitsprüfungen eigentlich wichtig wären. Den Fehler is the Microsoft IT specialist who offers solutions, but there is nothing more that can be done.

Anzeige

An analysis that Microsoft carried out in the Microsoft-365-Message-Center is available (here you will find a copy in a well-established network). Die kurze Zusammenfassung des Problems lautet: “Teilweise unvollständige Protokolldaten aufgrund Problemen mit dem Monitoring Agent”. On September 2, there was a trial in Microsoft’s internal monitoring agents for a single agent function with high protocol data on the internal logging platform, according to Microsoft. You need standardized protocols for the Microsoft services provided.

Microsoft: The Best Handling of IT Services

Microsoft insists that system availability or optimized resources are the problem. Ausschließlich die Log-Sammlung sei betroffen gewesen, and the stünde also in keinem Zusammenhang zu etwaigen IT-Scherheitskompomittierungen. Am 5. September if the Problem occurs. When supporting the service, Microsoft temporarily implemented management programs. The agents and servers will be configured when they start again, and the logging process will take place again. Als Ergebnis seien erheblich vollständigere Protokolldaten gesammelt worden. Einige Kunden haben durch jedoch erhöhte Latenzen oder Verzögerungen spüren können.

Please note that this is the first time you have to log into the Logging Service. At this point, stalemates developed as the agents began working, uploading endpoint telemetry in clearer directions, earning them an initial endpoint update until the war in progress. Dies führte zu einemählichen Deadlock in der Dispatching-Komponente, den Agent schließlich obstructionte, Telemetriedaten hochzuladen. It was pointed out by the agent between them, and other components were fixed further, running the samples and being able to provide data to the local cache. A new start of agents or management systems lost this Deadlock and the agent placed the date in the local cache at the beginning. In a case where the data protocols are larger than the cache, the first data tests are performed. Die überschriebenen Daten sind nicht wiederherstellbar.

Schließlich haben die Entwickler den Agent actualisiert. The new version has the Ziel, the problem is not more likely to unfold, above all available services and regions. This is a customer support service from Microsoft: Learn the latest trends in installation and activity data, Azure Logic Apps and healthcare APIs having a protocol platform standard or a Sentinel hinge without full security alarm. We suggest you configure logging features on Azure Monitor, Trusted Signing and Virtual Desktop via the Power-Plattform.

We invite you to view the Microsoft 365 Message Center and Dynamics 365 as well as information about Azure Server Health.

Microsoft sees Das Logging as the best solution for IT security, as well as IT security management. In late February, the companies made logging features available to free users in the United States, without that person having a Microsoft-365-E5 license. You can also view Purview Audit (Standard) specifications.

(dmk)