Month: January 2022

Multi-tenant App registration and user (Admin) consent

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 31/01/2022 0 Comments on Multi-tenant App registration and user (Admin) consent
Posted in Access Reviews, Azure, Azure B2B, Azure B2C, Identity, Security

What has changed? Microsoft have removed ability for getting user consent for unverified applications. This is an great addition towards security but it will make your life harder as a admin and as a software publisher. Different options Let’s go…

Continue Reading Multi-tenant App registration and user (Admin) consent

Section 2 – Secure access by using Azure AD – Configure access reviews

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 26/01/2022 0 Comments on Section 2 – Secure access by using Azure AD – Configure access reviews
Posted in Access Reviews, Azure, Azure AD, Identity, Security

This will be end of Section 2 and the ending will done with Access Reviews. What are Access Reviews? Access reviews enable organizations to efficiently manage group memberships, access to enterprise applications, and role assignments. User’s access can be reviewed…

Continue Reading Section 2 – Secure access by using Azure AD – Configure access reviews

Section 2- Secure access by using Azure AD – Implement passwordless authentication

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 24/01/2022 0 Comments on Section 2- Secure access by using Azure AD – Implement passwordless authentication
Posted in Azure, Azure AD, Identity, Security

Passwordless authentication is a hot topic, if You have a password it can be cracked or phished. In the last parts we enabled MFA so let’s continue from there. What is passwordless? Passwordless means that You sign-in without a password,…

Continue Reading Section 2- Secure access by using Azure AD – Implement passwordless authentication

Running PowerShell scripts under Azure Automation Accounts

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 21/01/2022 0 Comments on Running PowerShell scripts under Azure Automation Accounts
Posted in Azure, Azure AD, Identity, Security

Before You had to schedule PowerShell scripts from Your task scheduler inside servers or workstations but not that has changed, You can run Your favorite scripts directly from Azure with Automation Accounts and runbooks. What is Azure Automation Account? Azure…

Continue Reading Running PowerShell scripts under Azure Automation Accounts

Section 2 – Secure access by using Azure AD – Implement Azure AD Identity Protection

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 19/01/2022 0 Comments on Section 2 – Secure access by using Azure AD – Implement Azure AD Identity Protection
Posted in Azure, Azure AD, Identity, Security

Still in section 2, there is a lot to write about. Now we are covering Identity protection. What is Identity Protection? Identity Protection uses the learnings Microsoft has acquired from their position in organizations with Azure AD, the consumer space…

Continue Reading Section 2 – Secure access by using Azure AD – Implement Azure AD Identity Protection

Section 2 – Secure access by using Azure AD – Implement Conditional Access policies, including multifactor authentication

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 17/01/2022 0 Comments on Section 2 – Secure access by using Azure AD – Implement Conditional Access policies, including multifactor authentication
Posted in Azure, Azure AD, Identity, Security

First we will cover the solutions in hand. What is Conditional access? Conditional Access is based on conditions for a location, devices used, risks discovered. Here is an excellent picture from Microsoft which explain the flow. Licensing You need at…

Continue Reading Section 2 – Secure access by using Azure AD – Implement Conditional Access policies, including multifactor authentication

Section 2 – Secure access by using Azure AD – How to Configure Azure AD Privileged Identity Management (PIM)

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 16/01/2022 0 Comments on Section 2 – Secure access by using Azure AD – How to Configure Azure AD Privileged Identity Management (PIM)
Posted in Azure, Azure AD, Identity, Security

This is part of section two for AZ-500 exam preparation. First we have to see what PIM is? Privileged Identity Management (PIM) provides a time-based and approval-based role activation to mitigate the risks of excessive, unnecessary, or misused access permissions to…

Continue Reading Section 2 – Secure access by using Azure AD – How to Configure Azure AD Privileged Identity Management (PIM)

Section 1 – Manage Azure Active Directory identities

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 13/01/2022 0 Comments on Section 1 – Manage Azure Active Directory identities
Posted in AAD Connect, Azure, Azure AD, Azure B2B, Certifications, Identity, Security

This is the first section from study series for AZ-500 – Manage Azure Active Directory identities and starting with Create and manage a managed identity for Azure resources In my example I will use Virtual Machines, you can also use…

Continue Reading Section 1 – Manage Azure Active Directory identities

AZ-500 exam preparation series

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 13/01/2022 0 Comments on AZ-500 exam preparation series
Posted in Azure, Certifications

When I studied to my own AZ-500, I decided that I will make my own Exam Cram, study guide or whatever you want to call it. The goal will be on passing the exam or just refreshing Your brain. I…

Continue Reading AZ-500 exam preparation series

Azure storage accounts and how to secure them?

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 10/01/2022 0 Comments on Azure storage accounts and how to secure them?
Posted in Azure, Azure AD, Defender, IAM, Identity, Security, Storage

In the last part I explained what storage accounts are and how you can access them. In this part I will explain how to protect them from insider or external risks. Defender for storage Azure storage accounts are billed hourly….

Continue Reading Azure storage accounts and how to secure them?