Category: Azure AD

Entra ID CA Templates are now Generally Available!

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 11/09/2023 0 Comments on Entra ID CA Templates are now Generally Available!
Posted in Azure AD, Entra, Identity, Security

When it was still in Public preview, I wrote this post on it. Templates available So, let’s see what has changed. These are the templates that are currently available, no change here. The process of Exporting You can download policies…

Continue Reading Entra ID CA Templates are now Generally Available!

Proactive migration of legacy MFA and SSPR policy settings to Authentication methods

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 01/06/2023 0 Comments on Proactive migration of legacy MFA and SSPR policy settings to Authentication methods
Posted in Authentication methods, Azure, Azure AD, Identity, Security

Why to? For now policy settings can be moved at your own pace but the procedure is completely reversible. While you specifically specify authentication methods for users and groups in the Authentication methods policy, you can continue to employ tenant-wide…

Continue Reading Proactive migration of legacy MFA and SSPR policy settings to Authentication methods

Cross-tenant synchronization is now Generally available

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 31/05/2023 0 Comments on Cross-tenant synchronization is now Generally available
Posted in Azure, Azure AD, Entra, IAM, Identity, Identity Platform, Security

Microsoft’s Cross-tenant features When it comes to the cross-tenant access features, Microsoft has a strong road plan so far. There won’t be any more external users or jumping between Teams tenants when you require access to various tenants, which we…

Continue Reading Cross-tenant synchronization is now Generally available

Microsoft Entra External ID’s (Preview)

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 25/05/2023 0 Comments on Microsoft Entra External ID’s (Preview)
Posted in Azure, Azure AD, IAM, Identity, Identity Platform, Security

Or Azure AD for customers, yes Azure AD for customers. That’s the name of the game. Microsoft released this excellent feature at Build yesterday and I wanted to elaborate it a bit more. Why to use it? Azure AD makes…

Continue Reading Microsoft Entra External ID’s (Preview)

Azure AD Application proxy and some previews

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 26/04/2023 0 Comments on Azure AD Application proxy and some previews
Posted in Application Proxy, Authentication methods, Azure, Azure AD, Entra, Hybrid, Identity, Identity Platform, On-premises, Security

Azure AD Application proxy is an essential tool for providing access to your on-premises applications. In the past you could use it as a reverse proxy to internal Web-based (accessible with browser) applications and you could define One URI per…

Continue Reading Azure AD Application proxy and some previews

Azure AD External Identities with SAML IdP part 2 of 2

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 12/04/2023 0 Comments on Azure AD External Identities with SAML IdP part 2 of 2
Posted in Authentication methods, Azure, Azure AD, Azure B2B, Azure B2C, Identity, Identity Platform, Security

In this part we will see the end-user experience and what you could use instead of Direct federation. SAML-based External IdP can be also done with federating your cloud-based domains. The idea and the concept is the same but in…

Continue Reading Azure AD External Identities with SAML IdP part 2 of 2

Azure (AD) recommendations with some explanations

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 08/04/2023 0 Comments on Azure (AD) recommendations with some explanations
Posted in Azure, Azure AD, Azure Policies, Defender, Identity, Identity Platform, Microsoft Graph, Security

This post is on recommendations, so here is my personal red alert type recommendation for all. You still have 83 days, give or take to establish a migration from ADAL to MSAL. Read from more Learn In the past months…

Continue Reading Azure (AD) recommendations with some explanations

Azure AD External Identities with SAML IdP part 1 of 2

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 05/04/2023 0 Comments on Azure AD External Identities with SAML IdP part 1 of 2
Posted in Authentication methods, Azure, Azure AD, Azure B2B, Hybrid, Identity, Identity Platform, Security

In the picture above, you can see how Conditional Access will evaluate those guest users. The majority of users who are typically thought of as guests fall into this category. This B2B collaboration user has guest-level access in your organization…

Continue Reading Azure AD External Identities with SAML IdP part 1 of 2

Section 6 – Mitigate threats using Microsoft Defender for Cloud – Implement and maintain cloud security posture management and workload protection

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 02/04/2023 0 Comments on Section 6 – Mitigate threats using Microsoft Defender for Cloud – Implement and maintain cloud security posture management and workload protection
Posted in Azure, Azure AD, Defender, Identity, KQL, SC-200, Security

Then we go to Defender for Cloud and starting with the planning part. Let’s get going! Be sure to check the previous chapters, you will need that information to understand to journey that we are on. Plan and configure Microsoft…

Continue Reading Section 6 – Mitigate threats using Microsoft Defender for Cloud – Implement and maintain cloud security posture management and workload protection

Azure AD Privileged Identity Management and new features

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 08/03/2023 0 Comments on Azure AD Privileged Identity Management and new features
Posted in Authentication methods, Azure, Azure AD, Conditional access, Identity, Identity Platform, Microsoft Purview, PIM, Security, Zero trust

What is PIM? PIM has and will be a backbone for permission Just In Time access in Microsoft based environments. You can easily assign Permanent roles but also Eligible roles for admins and define timeout for the roles. They either…

Continue Reading Azure AD Privileged Identity Management and new features