Category: Entra ID

Deep Dive into Conditional Access Policies part 1

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 19/04/2024
Posted in Azure, Conditional access, Entra ID, Identity, Microsoft Graph, Security

Entra ID Conditional Access Policy Evaluation: A Breakdown Phase Description Applies To 1: Signal Collection Gathers information about the user’s access attempt.Examples: Network location (IP address), device identity (type, OS version). Applies to all enabled Conditional Access policies, including those…

Continue Reading Deep Dive into Conditional Access Policies part 1

This is why I think you should join CCPs 💯

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 13/04/2024
Posted in Azure, Compliance, Copilot, Entra ID, Identity, Microsoft Purview, Security

Imagine a giant security geek party… but way cooler! That’s kind of what the CCPs are like. Instead of just listening to someone lecture at a conference, you get to chat directly with Microsoft engineers and other security pros. It’s…

Continue Reading This is why I think you should join CCPs 💯

Graph activity logs is now generally available

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 11/04/2024
Posted in Azure, Entra ID, Microsoft Graph, Microsoft Purview, Security, Zero trust

What you do with it? Privileges To access the Microsoft Graph activity logs, you need the following privileges. What information is available? Column Type Description AadTenantId string The Azure AD tenant ID. ApiVersion string The API version of the event….

Continue Reading Graph activity logs is now generally available

How many Conditional Access policies you can create?

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 02/04/2024
Posted in Azure, Conditional access, Entra ID, Microsoft Graph, Powershell, Security

Is there a reason for this article? There is always a reason to write on Conditional Access but for this specific topic, decided to write when I got results from a Poll I created out of the blue, asking the…

Continue Reading How many Conditional Access policies you can create?

SCIMming with PIM for Groups

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 02/04/2024
Posted in Azure, Entra ID, IAM, Identity, Microsoft Graph, PIM, Security

The process of creating Groups for PIM is super easy. Let’s go through it. History Before you had to assign roles to a particular user and they raised their permissions. Then you added the same role to another person and…

Continue Reading SCIMming with PIM for Groups

Encrypting Data-At-Rest with Customer Managed Keys in M365

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 17/03/2024
Posted in Azure, Compliance, Entra ID, Identity, Key vault, Microsoft Purview, Security

As I mentioned in my previous posts. I like to keep my view as holistic as possible. Mixing a little bit of Azure infrastructure and Security side with a little hint of M365 Compliance and Entra Identity ingredients. So that…

Continue Reading Encrypting Data-At-Rest with Customer Managed Keys in M365

Entra ID – Convert external users to internal (Preview)

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 16/03/2024
Posted in Azure, Entra ID, Identity, Security

Prologue Mergers, acquisitions, and reorganizations can create a tangled web of user accounts. Imagine acquiring a company where some employees collaborate with your team using external guest accounts. Integrating them fully requires converting them to internal users – a process…

Continue Reading Entra ID – Convert external users to internal (Preview)

Insider Risks and Conditional Access

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 14/03/2024
Posted in Azure, Entra ID, Identity, Insider risks, Microsoft Purview, Security

Why Insider Risks matter? Employees now have greater ability to produce, manage, and exchange data across a variety of platforms and applications. In most circumstances, firms have limited resources and tools to detect and reduce organizational risks while adhering to…

Continue Reading Insider Risks and Conditional Access

My tenant has Security defaults enabled and I want to disable them. What to do?

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 10/03/2024
Posted in Azure, Conditional access, Entra ID, IAM, Identity, Security, Zero trust

First things first, Security defaults were automatically enabled for all new tenants created after October 22, 2019. This was to ensure a strong security posture right from the start for all users. Set the stage Let’s imagine this scenario. You…

Continue Reading My tenant has Security defaults enabled and I want to disable them. What to do?

Section 5 – Implement DLP – Create and configure DLP policies

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 29/10/2023 0 Comments on Section 5 – Implement DLP – Create and configure DLP policies
Posted in Azure, Compliance, Data Loss Prevention, Defender, Entra ID, Microsoft Purview, SC-400, Security, Study guide

Design DLP policies based on an organization’s requirements Designing Data Loss Prevention could be based on the regulations of your industry or just internal security principles that should be made to carve the security measure framework in to stone. In…

Continue Reading Section 5 – Implement DLP – Create and configure DLP policies