Category: Azure AD

Cross-tenant synchronization is now Generally available

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 31/05/2023 0 Comments on Cross-tenant synchronization is now Generally available
Posted in Azure, Azure AD, Entra, IAM, Identity, Identity Platform, Security

Microsoft’s Cross-tenant features When it comes to the cross-tenant access features, Microsoft has a strong road plan so far. There won’t be any more external users or jumping between Teams tenants when you require access to various tenants, which we…

Continue Reading Cross-tenant synchronization is now Generally available

Microsoft Entra External ID’s (Preview)

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 25/05/2023 0 Comments on Microsoft Entra External ID’s (Preview)
Posted in Azure, Azure AD, IAM, Identity, Identity Platform, Security

Or Azure AD for customers, yes Azure AD for customers. That’s the name of the game. Microsoft released this excellent feature at Build yesterday and I wanted to elaborate it a bit more. Why to use it? Azure AD makes…

Continue Reading Microsoft Entra External ID’s (Preview)

Azure AD Application proxy and some previews

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 26/04/2023 0 Comments on Azure AD Application proxy and some previews
Posted in Application Proxy, Authentication methods, Azure, Azure AD, Entra, Hybrid, Identity, Identity Platform, On-premises, Security

Azure AD Application proxy is an essential tool for providing access to your on-premises applications. In the past you could use it as a reverse proxy to internal Web-based (accessible with browser) applications and you could define One URI per…

Continue Reading Azure AD Application proxy and some previews

Azure AD External Identities with SAML IdP part 2 of 2

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 12/04/2023 0 Comments on Azure AD External Identities with SAML IdP part 2 of 2
Posted in Authentication methods, Azure, Azure AD, Azure B2B, Azure B2C, Identity, Identity Platform, Security

In this part we will see the end-user experience and what you could use instead of Direct federation. SAML-based External IdP can be also done with federating your cloud-based domains. The idea and the concept is the same but in…

Continue Reading Azure AD External Identities with SAML IdP part 2 of 2

Azure (AD) recommendations with some explanations

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 08/04/2023 0 Comments on Azure (AD) recommendations with some explanations
Posted in Azure, Azure AD, Azure Policies, Defender, Identity, Identity Platform, Microsoft Graph, Security

This post is on recommendations, so here is my personal red alert type recommendation for all. You still have 83 days, give or take to establish a migration from ADAL to MSAL. Read from more Learn In the past months…

Continue Reading Azure (AD) recommendations with some explanations

Azure AD External Identities with SAML IdP part 1 of 2

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 05/04/2023 0 Comments on Azure AD External Identities with SAML IdP part 1 of 2
Posted in Authentication methods, Azure, Azure AD, Azure B2B, Hybrid, Identity, Identity Platform, Security

In the picture above, you can see how Conditional Access will evaluate those guest users. The majority of users who are typically thought of as guests fall into this category. This B2B collaboration user has guest-level access in your organization…

Continue Reading Azure AD External Identities with SAML IdP part 1 of 2

Section 6 – Mitigate threats using Microsoft Defender for Cloud – Implement and maintain cloud security posture management and workload protection

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 02/04/2023 0 Comments on Section 6 – Mitigate threats using Microsoft Defender for Cloud – Implement and maintain cloud security posture management and workload protection
Posted in Azure, Azure AD, Defender, Identity, KQL, SC-200, Security

Then we go to Defender for Cloud and starting with the planning part. Let’s get going! Be sure to check the previous chapters, you will need that information to understand to journey that we are on. Plan and configure Microsoft…

Continue Reading Section 6 – Mitigate threats using Microsoft Defender for Cloud – Implement and maintain cloud security posture management and workload protection

Azure AD Privileged Identity Management and new features

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 08/03/2023 0 Comments on Azure AD Privileged Identity Management and new features
Posted in Authentication methods, Azure, Azure AD, Conditional access, Identity, Identity Platform, Microsoft Purview, PIM, Security, Zero trust

What is PIM? PIM has and will be a backbone for permission Just In Time access in Microsoft based environments. You can easily assign Permanent roles but also Eligible roles for admins and define timeout for the roles. They either…

Continue Reading Azure AD Privileged Identity Management and new features

Section 4 – Mitigate identity threats part 2 of 2

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 05/03/2023 0 Comments on Section 4 – Mitigate identity threats part 2 of 2
Posted in Active Directory, ADFS, Authentication methods, Azure, Azure AD, Certificates, Conditional access, Cross-tenant, Defender, Entra, Hybrid, Identity, On-premises, SC-200, Security, Zero trust

Identity protecting is challenging if you don’t know what you should protect and when you do, you should know how to protect it. In the second part we will be discovering more on Conditional Access as a dynamic boundary in…

Continue Reading Section 4 – Mitigate identity threats part 2 of 2

Section 4 – Mitigate identity threats part 1 of 2

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 26/02/2023 0 Comments on Section 4 – Mitigate identity threats part 1 of 2
Posted in Access Reviews, Azure, Azure AD, Conditional access, Entra, Identity, SC-200, Security

Last part was a blast, let’s see how long this one will be as it’s about Identity! Just like you can see from the picture above, Identity is every where and it could be the same Identity for all the…

Continue Reading Section 4 – Mitigate identity threats part 1 of 2