Category: Authentication methods

AZ-500 Study guide – Section 2 – Manage identity and access – Manage Microsoft Entra authentication​

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 21/09/2024
Posted in Authentication methods, AZ-500, Azure, Conditional access, Entra ID, Identity, PIM, Security, Study guide

Implement multi-factor authentication (MFA) What is Multifactor Authentication (MFA)? MFA adds an extra layer of security by requiring a second form of identification during sign-in, like a code on your phone or fingerprint scan. This makes it harder for attackers…

Continue Reading AZ-500 Study guide – Section 2 – Manage identity and access – Manage Microsoft Entra authentication​

AZ-500 Study guide – Section 1 – Manage identity and access – Manage Microsoft Entra identities​

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 01/09/2024
Posted in Authentication methods, AZ-500, Azure, Azure B2C, Conditional access, Entra, Entra ID, Security, Study guide

​ Here we go again. Study guides, oh those study guides, don’t you just love them. Microsoft is making their own, excellent guides but my idea is to make them little bit better. So sit back and enjoy! ​ Secure…

Continue Reading AZ-500 Study guide – Section 1 – Manage identity and access – Manage Microsoft Entra identities​

Proactive migration of legacy MFA and SSPR policy settings to Authentication methods

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 01/06/2023 0 Comments on Proactive migration of legacy MFA and SSPR policy settings to Authentication methods
Posted in Authentication methods, Azure, Azure AD, Identity, Security

Why to? For now policy settings can be moved at your own pace but the procedure is completely reversible. While you specifically specify authentication methods for users and groups in the Authentication methods policy, you can continue to employ tenant-wide…

Continue Reading Proactive migration of legacy MFA and SSPR policy settings to Authentication methods

Azure AD Application proxy and some previews

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 26/04/2023 0 Comments on Azure AD Application proxy and some previews
Posted in Application Proxy, Authentication methods, Azure, Azure AD, Entra, Hybrid, Identity, Identity Platform, On-premises, Security

Azure AD Application proxy is an essential tool for providing access to your on-premises applications. In the past you could use it as a reverse proxy to internal Web-based (accessible with browser) applications and you could define One URI per…

Continue Reading Azure AD Application proxy and some previews

Azure AD External Identities with SAML IdP part 2 of 2

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 12/04/2023 0 Comments on Azure AD External Identities with SAML IdP part 2 of 2
Posted in Authentication methods, Azure, Azure AD, Azure B2B, Azure B2C, Identity, Identity Platform, Security

In this part we will see the end-user experience and what you could use instead of Direct federation. SAML-based External IdP can be also done with federating your cloud-based domains. The idea and the concept is the same but in…

Continue Reading Azure AD External Identities with SAML IdP part 2 of 2

Azure AD External Identities with SAML IdP part 1 of 2

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 05/04/2023 0 Comments on Azure AD External Identities with SAML IdP part 1 of 2
Posted in Authentication methods, Azure, Azure AD, Azure B2B, Hybrid, Identity, Identity Platform, Security

In the picture above, you can see how Conditional Access will evaluate those guest users. The majority of users who are typically thought of as guests fall into this category. This B2B collaboration user has guest-level access in your organization…

Continue Reading Azure AD External Identities with SAML IdP part 1 of 2

Azure AD Privileged Identity Management and new features

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 08/03/2023 0 Comments on Azure AD Privileged Identity Management and new features
Posted in Authentication methods, Azure, Azure AD, Conditional access, Identity, Identity Platform, Microsoft Purview, PIM, Security, Zero trust

What is PIM? PIM has and will be a backbone for permission Just In Time access in Microsoft based environments. You can easily assign Permanent roles but also Eligible roles for admins and define timeout for the roles. They either…

Continue Reading Azure AD Privileged Identity Management and new features

Section 4 – Mitigate identity threats part 2 of 2

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 05/03/2023 0 Comments on Section 4 – Mitigate identity threats part 2 of 2
Posted in Active Directory, ADFS, Authentication methods, Azure, Azure AD, Certificates, Conditional access, Cross-tenant, Defender, Entra, Hybrid, Identity, On-premises, SC-200, Security, Zero trust

Identity protecting is challenging if you don’t know what you should protect and when you do, you should know how to protect it. In the second part we will be discovering more on Conditional Access as a dynamic boundary in…

Continue Reading Section 4 – Mitigate identity threats part 2 of 2

Postponed timeline for Number matching

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 18/02/2023 0 Comments on Postponed timeline for Number matching
Posted in Authentication methods, Azure, Azure AD, Entra, Identity, Security

First the good news. Well maybe not good security wise but at least you still have time to Educate and enable before it will be enforced. Number matching enforcement is still in the horizon Also SSPR and legacy MFA policies…

Continue Reading Postponed timeline for Number matching

Conditional Access templates (Preview) and other tips on the side

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 07/12/2022 0 Comments on Conditional Access templates (Preview) and other tips on the side
Posted in Authentication methods, Azure, Azure AD, Identity, Microsoft 365, Security, Zero trust

First, I want to mention Microsoft Entra admin center and the announcement Microsoft made about it. You should care about it because starting from 2023 new capabilities will be rolled out to Entra. Also in December Microsoft started redirects when…

Continue Reading Conditional Access templates (Preview) and other tips on the side