Month: September 2021

Defender for Identity deep dive part 1 of 3

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 29/09/2021 0 Comments on Defender for Identity deep dive part 1 of 3
Posted in Azure, Defender, Identity, Onpremise, Security

I decided to do a deep dive on Defender for Identity and this is part 1 of that series. What is (was) Defender for Identity? Defender ATP was before called Azure Advanced Threat Protection (Azure ATP) and Defender for Identity…

Continue Reading Defender for Identity deep dive part 1 of 3

Azure MFA Extensions and Network Policy Server

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 27/09/2021 0 Comments on Azure MFA Extensions and Network Policy Server
Posted in AAD Connect, Active Directory, Azure, Azure AD, Defender, Hybrid, Identity, Onpremise, Security

Half legacy but half cloud. Many organizations use NPS for securing their wlan and lan traffic or just to authenticate user based on their location inside AD or group memberships. NPS is Microsoft radius-based access management solutions that has been…

Continue Reading Azure MFA Extensions and Network Policy Server

What’s new with AAD Connect V2 and why to migrate?

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 25/09/2021 0 Comments on What’s new with AAD Connect V2 and why to migrate?
Posted in AAD Connect, Active Directory, ADFS, Azure, Azure AD, Hybrid, Identity

History of AAD Connect User synchronization solutions has been here for a long time and they have evolved all the time, sometimes faster sometimes slower. Middle of September Microsoft released a new main version from Azure AAD Connect and the…

Continue Reading What’s new with AAD Connect V2 and why to migrate?

Autodiscover redirect leakage

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 23/09/2021 0 Comments on Autodiscover redirect leakage
Posted in Azure, Defender, Exchange, Identity, Onpremise

** This doesn’t concern Exchange Online in any way, only on-premise versions ** Today Guaricore lab team discovered on-premises Exchange autodiscover vulnerability. I want to call my blog post “Autodiscovering the Great Leak” but that seems like too much as…

Continue Reading Autodiscover redirect leakage

How integrate Azure defender with Azure ARC to multiple environments

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 23/09/2021 0 Comments on How integrate Azure defender with Azure ARC to multiple environments
Posted in Azure, Azure ARC, Defender, Hybrid, Onpremise

So what is Azure ARC? Azure ARC was first introduced at Ignite 2019. Azure ARC enables you to manage servers in different realms no matter in what AD it is. It will allow you to use Azure Resource Manager templates though…

Continue Reading How integrate Azure defender with Azure ARC to multiple environments

Office 365 ORCA and Configuration analyzer

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 20/09/2021 0 Comments on Office 365 ORCA and Configuration analyzer
Posted in Azure, Compliance, Defender, Identity, Microsoft 365, Security

I don’t how many of you ever used ORCA or Configuration analyzer? I have missed ORCA (Office 365 Advanced Threat Protection Recommended Configuration Analyzer) completely. I can see that it was introduced at Ignite 2019 but somehow I missed it….

Continue Reading Office 365 ORCA and Configuration analyzer

Azure Defender for container registries

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 20/09/2021 0 Comments on Azure Defender for container registries
Posted in AKS, Azure, Clustering, Compliance, Identity, Onpremise

Kubernetes clusters Continuous assessment of your clusters to provide visibility into misconfigurations and guidelines to help you mitigate identified threats. Learn more about environment hardening through security recommendations. Threat protection for clusters and Linux nodes. Alerts for suspicious activities are provided…

Continue Reading Azure Defender for container registries

Hybrid identity best practices

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 17/09/2021 0 Comments on Hybrid identity best practices
Posted in AAD Connect, Active Directory, Azure, Hybrid, Identity, Onpremise

Microsoft has world-class Identity support for different applications and for different organizations. Microsoft identity can be used for SSO in most of the applications no matter where it is. And the base for this is a well designed Hybrid Identity….

Continue Reading Hybrid identity best practices

Tips for passing Microsoft “role” based certificate exams (that helped me)

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 15/09/2021 0 Comments on Tips for passing Microsoft “role” based certificate exams (that helped me)
Posted in Certifications, Learn

I passed both of these, but they weren’t an easy task. You need on comprehensive set on knowledge from various aspects. MS-500 skills outline: Implement and manage identity and access (30-35%) Implement and manage threat protection (20-25%) Implement and manage…

Continue Reading Tips for passing Microsoft “role” based certificate exams (that helped me)

Modernize your 0ldSk00l VPN and legacy shares

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 15/09/2021 0 Comments on Modernize your 0ldSk00l VPN and legacy shares
Posted in 2012 R2, AAD Connect, Active Directory, Azure, Azure AD, Hybrid, Identity

Companies have had for ages requirements for connecting employees computers to organization network. In the past I have done these setups with Ipsecs, point-to-point tunnelings and recent year with Direct Access and Always-on vpn style. Between these it was done…

Continue Reading Modernize your 0ldSk00l VPN and legacy shares