Month: March 2022

What is Azure B2C and how to use custom policies?

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 30/03/2022 0 Comments on What is Azure B2C and how to use custom policies?
Posted in Azure, Azure B2C, Azure Front Door, Identity, Security

Azure B2C is a authentication portal for social, personal and corporate accounts. The authentication is based on OpenID Connect. You can modify the login pages, add identity providers, give all Azure AD tenants the right to login thru your tenant….

Continue Reading What is Azure B2C and how to use custom policies?

Section 11 – Implement Access Management for Apps – Plan, implement, and monitor the integration of Enterprise Apps for SSO – Monitoring, AAD App proxy and SSO

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 30/03/2022 0 Comments on Section 11 – Implement Access Management for Apps – Plan, implement, and monitor the integration of Enterprise Apps for SSO – Monitoring, AAD App proxy and SSO
Posted in Azure, Azure AD, Identity, Security

And then to the next section in my SC-300 study guide. Today is the turn for: monitor and audit access / Sign-ins to Azure Active Directory integrated enterprise applications integrate on-premises apps by using Azure AD application proxy Monitor and…

Continue Reading Section 11 – Implement Access Management for Apps – Plan, implement, and monitor the integration of Enterprise Apps for SSO – Monitoring, AAD App proxy and SSO

Azure AD connect version 2.1.1.0 released with bugfixes

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 29/03/2022 0 Comments on Azure AD connect version 2.1.1.0 released with bugfixes
Posted in Azure, Azure AD, Hybrid, Identity, Onpremise, Security

Microsoft has released an updated version of AAD Connect om 24th of March and it isn’t available for auto upgrade. Retirement of AAD Connect versions On August 31, 2022, all 1.x versions of Azure AD Connect will be retired because…

Continue Reading Azure AD connect version 2.1.1.0 released with bugfixes

Administrative units in AAD and some preview features

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 28/03/2022 0 Comments on Administrative units in AAD and some preview features
Posted in Azure, Azure AD, Identity, Security

What are Administrative units? A management unit is an Azure AD resource that can be a container for other Azure AD resources. The management unit can only contain users, groups, or devices. The management unit limits the permissions within the…

Continue Reading Administrative units in AAD and some preview features

Section 10 – Implement Access Management for Apps – Plan, implement, and monitor the integration of Enterprise Apps for SSO – Defender for Cloud Apps and App management

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 27/03/2022 0 Comments on Section 10 – Implement Access Management for Apps – Plan, implement, and monitor the integration of Enterprise Apps for SSO – Defender for Cloud Apps and App management
Posted in Azure, Azure AD, Identity, Security

Time for a new section and this time covering the following topics: implement and configure consent settings discover apps by using MCAS (Defender for Cloud Apps) or ADFS app report design and implement access management for apps design and implement…

Continue Reading Section 10 – Implement Access Management for Apps – Plan, implement, and monitor the integration of Enterprise Apps for SSO – Defender for Cloud Apps and App management

Section 9 – Implement an Authentication and Access Management Solution – Manage Azure AD Identity Protection

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 25/03/2022 0 Comments on Section 9 – Implement an Authentication and Access Management Solution – Manage Azure AD Identity Protection
Posted in Azure, Azure AD, Conditional access, Identity, Security

Second half of section 9 and going down with: implement and manage a user risk policy implement and manage sign-in risk policy implement and manage MFA registration policy monitor, investigate and remediate elevated risky users What is Identity Protection? Identity…

Continue Reading Section 9 – Implement an Authentication and Access Management Solution – Manage Azure AD Identity Protection

Some of my personal favorites for auditing Microsoft environments

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 24/03/2022 0 Comments on Some of my personal favorites for auditing Microsoft environments
Posted in AAD Connect, ADFS, AIP, Azure, Azure AD, Azure B2B, Azure Information Protection, Compliance, Conditional access, Data Loss Prevention, Identity, Microsoft 365, Security

Professionals are always finding out ways to report M365 or Azure environments, automating activities or remediating threats. There is insane amount of content available to achieve these goals but I want to list some of my favorites in this post….

Continue Reading Some of my personal favorites for auditing Microsoft environments

Section 9 – Implement an Authentication and Access Management Solution – Plan, implement and administer conditional access

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 23/03/2022 0 Comments on Section 9 – Implement an Authentication and Access Management Solution – Plan, implement and administer conditional access
Posted in Azure, Azure AD, Conditional access, Identity, Security

Time for first half of section 9 in my SC-300 study guide and covering the following: plan and implement security defaults plan conditional access policies implement conditional access policy controls and assignments (targeting, applications, and conditions) testing and troubleshooting conditional…

Continue Reading Section 9 – Implement an Authentication and Access Management Solution – Plan, implement and administer conditional access

Cross-tenant access settings and Teams connect shared channels

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 22/03/2022 0 Comments on Cross-tenant access settings and Teams connect shared channels
Posted in Azure, Azure AD, Azure B2B, Conditional access, Identity, Security, Teams

Teams have some excellent solutions for collaborating but one big annoying things has been switching the accounts when You need to access another tenant. Microsoft release Shared channel and it’s currently in public preview after it was announced in late…

Continue Reading Cross-tenant access settings and Teams connect shared channels

Recovering accidentally deleted service principal objects

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 21/03/2022 0 Comments on Recovering accidentally deleted service principal objects
Posted in Azure, Identity, Security

The Microsoft Graph API will soon begin supporting the ability to recover accidentally deleted service principal objects, the feature will be rolling out 4/2022. The Application object already supports this feature. And it can be found here. How it works?…

Continue Reading Recovering accidentally deleted service principal objects