Category: Identity Platform

Cross-tenant synchronization is now Generally available

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 31/05/2023 0 Comments on Cross-tenant synchronization is now Generally available
Posted in Azure, Azure AD, Entra, IAM, Identity, Identity Platform, Security

Microsoft’s Cross-tenant features When it comes to the cross-tenant access features, Microsoft has a strong road plan so far. There won’t be any more external users or jumping between Teams tenants when you require access to various tenants, which we…

Continue Reading Cross-tenant synchronization is now Generally available

Microsoft Entra External ID’s (Preview)

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 25/05/2023 0 Comments on Microsoft Entra External ID’s (Preview)
Posted in Azure, Azure AD, IAM, Identity, Identity Platform, Security

Or Azure AD for customers, yes Azure AD for customers. That’s the name of the game. Microsoft released this excellent feature at Build yesterday and I wanted to elaborate it a bit more. Why to use it? Azure AD makes…

Continue Reading Microsoft Entra External ID’s (Preview)

Azure AD Application proxy and some previews

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 26/04/2023 0 Comments on Azure AD Application proxy and some previews
Posted in Application Proxy, Authentication methods, Azure, Azure AD, Entra, Hybrid, Identity, Identity Platform, On-premises, Security

Azure AD Application proxy is an essential tool for providing access to your on-premises applications. In the past you could use it as a reverse proxy to internal Web-based (accessible with browser) applications and you could define One URI per…

Continue Reading Azure AD Application proxy and some previews

Azure AD External Identities with SAML IdP part 2 of 2

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 12/04/2023 0 Comments on Azure AD External Identities with SAML IdP part 2 of 2
Posted in Authentication methods, Azure, Azure AD, Azure B2B, Azure B2C, Identity, Identity Platform, Security

In this part we will see the end-user experience and what you could use instead of Direct federation. SAML-based External IdP can be also done with federating your cloud-based domains. The idea and the concept is the same but in…

Continue Reading Azure AD External Identities with SAML IdP part 2 of 2

Azure (AD) recommendations with some explanations

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 08/04/2023 0 Comments on Azure (AD) recommendations with some explanations
Posted in Azure, Azure AD, Azure Policies, Defender, Identity, Identity Platform, Microsoft Graph, Security

This post is on recommendations, so here is my personal red alert type recommendation for all. You still have 83 days, give or take to establish a migration from ADAL to MSAL. Read from more Learn In the past months…

Continue Reading Azure (AD) recommendations with some explanations

Azure AD External Identities with SAML IdP part 1 of 2

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 05/04/2023 0 Comments on Azure AD External Identities with SAML IdP part 1 of 2
Posted in Authentication methods, Azure, Azure AD, Azure B2B, Hybrid, Identity, Identity Platform, Security

In the picture above, you can see how Conditional Access will evaluate those guest users. The majority of users who are typically thought of as guests fall into this category. This B2B collaboration user has guest-level access in your organization…

Continue Reading Azure AD External Identities with SAML IdP part 1 of 2

Azure AD Privileged Identity Management and new features

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 08/03/2023 0 Comments on Azure AD Privileged Identity Management and new features
Posted in Authentication methods, Azure, Azure AD, Conditional access, Identity, Identity Platform, Microsoft Purview, PIM, Security, Zero trust

What is PIM? PIM has and will be a backbone for permission Just In Time access in Microsoft based environments. You can easily assign Permanent roles but also Eligible roles for admins and define timeout for the roles. They either…

Continue Reading Azure AD Privileged Identity Management and new features

SQL Server 2022 and Azure ARC with Azure subscription model

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 28/11/2022 0 Comments on SQL Server 2022 and Azure ARC with Azure subscription model
Posted in Azure, Azure AD, Azure ARC, Compliance, Defender, IAM, Identity, Identity Platform, Microsoft Purview, On-premises, Powershell, Security, SQL

SQL 2022 has arrived and in this post I will try out the new setup that should have Azure ARC install embedded. Why to use Azure ARC with SQL 2022? One reason could be security, you will get these features…

Continue Reading SQL Server 2022 and Azure ARC with Azure subscription model

Do’s and don’ts concerning security for Identity part 8

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 27/11/2022 0 Comments on Do’s and don’ts concerning security for Identity part 8
Posted in Active Directory, ADFS, Authentication methods, Azure, Azure AD, Azure ARC, Certificates, Hybrid, IAM, Identity, Identity Platform, Key vault, Security, Storage

Continuing from last post with the same topic but now from the negative side of things. What could go wrong if you don’t do it right. This post will assume that you are still having on-premises AD with ADCS and…

Continue Reading Do’s and don’ts concerning security for Identity part 8

Do’s and don’ts concerning security for Identity part 7

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 20/11/2022 0 Comments on Do’s and don’ts concerning security for Identity part 7
Posted in Authentication methods, Azure, Conditional access, Defender, Identity, Identity Platform, Microsoft Graph, Security

Once again, more best practices for Identity. In the last part I covered how we can protect your applications from leaking content. Keep your Identities secure and how to keep using MFA after on-premises MFA Server will not work anymore….

Continue Reading Do’s and don’ts concerning security for Identity part 7