Category: Microsoft Graph

Deep Dive into Conditional Access Policies part 1

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 19/04/2024
Posted in Azure, Conditional access, Entra ID, Identity, Microsoft Graph, Security

Entra ID Conditional Access Policy Evaluation: A Breakdown Phase Description Applies To 1: Signal Collection Gathers information about the user’s access attempt.Examples: Network location (IP address), device identity (type, OS version). Applies to all enabled Conditional Access policies, including those…

Continue Reading Deep Dive into Conditional Access Policies part 1

Graph activity logs is now generally available

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 11/04/2024
Posted in Azure, Entra ID, Microsoft Graph, Microsoft Purview, Security, Zero trust

What you do with it? Privileges To access the Microsoft Graph activity logs, you need the following privileges. What information is available? Column Type Description AadTenantId string The Azure AD tenant ID. ApiVersion string The API version of the event….

Continue Reading Graph activity logs is now generally available

How many Conditional Access policies you can create?

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 02/04/2024
Posted in Azure, Conditional access, Entra ID, Microsoft Graph, Powershell, Security

Is there a reason for this article? There is always a reason to write on Conditional Access but for this specific topic, decided to write when I got results from a Poll I created out of the blue, asking the…

Continue Reading How many Conditional Access policies you can create?

SCIMming with PIM for Groups

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 02/04/2024
Posted in Azure, Entra ID, IAM, Identity, Microsoft Graph, PIM, Security

The process of creating Groups for PIM is super easy. Let’s go through it. History Before you had to assign roles to a particular user and they raised their permissions. Then you added the same role to another person and…

Continue Reading SCIMming with PIM for Groups

Section 7 – Mitigate threats using Microsoft Defender for Cloud – Plan and implement the use of data connectors for ingestion of data sources in Microsoft Defender for Cloud

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 09/04/2023 0 Comments on Section 7 – Mitigate threats using Microsoft Defender for Cloud – Plan and implement the use of data connectors for ingestion of data sources in Microsoft Defender for Cloud
Posted in Azure, Azure ARC, Azure Automation, Defender, Identity, Microsoft Graph, On-premises, SC-200, Security, Study guide

Continuing the journey with Defender for cloud. This time we will see Data source, how to onboard Azure resources and Azure ARC integration. With the exponential rise of cloud services, companies now place a high priority on protecting cloud workloads….

Continue Reading Section 7 – Mitigate threats using Microsoft Defender for Cloud – Plan and implement the use of data connectors for ingestion of data sources in Microsoft Defender for Cloud

Azure (AD) recommendations with some explanations

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 08/04/2023 0 Comments on Azure (AD) recommendations with some explanations
Posted in Azure, Azure AD, Azure Policies, Defender, Identity, Identity Platform, Microsoft Graph, Security

This post is on recommendations, so here is my personal red alert type recommendation for all. You still have 83 days, give or take to establish a migration from ADAL to MSAL. Read from more Learn In the past months…

Continue Reading Azure (AD) recommendations with some explanations

Do’s and don’ts concerning security for Identity part 7

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 20/11/2022 0 Comments on Do’s and don’ts concerning security for Identity part 7
Posted in Authentication methods, Azure, Conditional access, Defender, Identity, Identity Platform, Microsoft Graph, Security

Once again, more best practices for Identity. In the last part I covered how we can protect your applications from leaking content. Keep your Identities secure and how to keep using MFA after on-premises MFA Server will not work anymore….

Continue Reading Do’s and don’ts concerning security for Identity part 7

Do’s and don’ts concerning security for Identity part 5

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 06/11/2022 0 Comments on Do’s and don’ts concerning security for Identity part 5
Posted in Azure, Azure AD, Conditional access, Hybrid, Identity, Microsoft 365, Microsoft Graph, Security, Sharepoint, Teams

Continuing with the do’s of Identity and supposing that you are in part of your journey that you have either Hybrid or fully cloud-based identities. In the last part I covered how you can keep your External users in bay…

Continue Reading Do’s and don’ts concerning security for Identity part 5

Cross-tenant User Data Migration is Now Generally Available!

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 02/11/2022 0 Comments on Cross-tenant User Data Migration is Now Generally Available!
Posted in Azure, Azure AD, Exchange, Hybrid, Identity, Microsoft 365, Microsoft Graph, Migrate, Powershell

Microsoft has announced that Cross-tenant user data migration is now generally available. What means User data and how the Identity will move between the organizations with the mailbox move? Read the announcement here. Let’s see what this solutions is about….

Continue Reading Cross-tenant User Data Migration is Now Generally Available!

Do’s and don’ts concerning security for Identity part 4

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 30/10/2022 0 Comments on Do’s and don’ts concerning security for Identity part 4
Posted in Azure, Azure AD, Azure B2B, Conditional access, Entitlement management, IAM, Identity, Microsoft 365, Microsoft Authenticator, Microsoft Graph, Security

Continuing with the do’s of Identity and supposing that you are in part of your journey that you have either Hybrid or fully cloud-based identities. In the last part I covered how you can use Hybrid Identity Administrator role, Automation…

Continue Reading Do’s and don’ts concerning security for Identity part 4