Month: September 2022

Defender for Cloud security alerts

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 30/09/2022 0 Comments on Defender for Cloud security alerts
Posted in Azure, Defender, Hybrid, Identity, KQL, Security

The scenario You have a Windows server with a public IP-address and RDP (TCP 3389) is exposed to internet. And there is still over 3 million open TCP 3389 ports out there. Stupid right but if you are one of…

Continue Reading Defender for Cloud security alerts

Microsoft Defender SmartScreen in Windows 11 22H2

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 27/09/2022 0 Comments on Microsoft Defender SmartScreen in Windows 11 22H2
Posted in Azure, Defender, Microsoft 365, Powershell, Security

Have you noticed that there is a really handy security feature that came to Windows 11 in version 22H2 But It’s not enabled by default and it also requires you to log into Windows with your password instead of Windows…

Continue Reading Microsoft Defender SmartScreen in Windows 11 22H2

What’s new with Secure score in Microsoft Defender portal (and some other tips)

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 25/09/2022 0 Comments on What’s new with Secure score in Microsoft Defender portal (and some other tips)
Posted in Azure, Azure AD, Conditional access, Entra, Identity, Microsoft 365, Security

What is Secure score? Microsoft releases suggestions on security settings that should be turned on to enhance your security posture against external and internal threats. You’re given points for the following actions: Configuring recommended security features Doing security-related tasks Addressing…

Continue Reading What’s new with Secure score in Microsoft Defender portal (and some other tips)

How to use Azure Key Vault with managed identities and generating keys with auto-rotation

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 18/09/2022 0 Comments on How to use Azure Key Vault with managed identities and generating keys with auto-rotation
Posted in Azure, Azure AD, Key vault, Powershell, Security, Storage

Data-planes First you have to understand the different URLs that you can use for different types of resources Resource type Key protection methods Data-plane endpoint base URL Vaults Software-protected and HSM-protected (with Premium SKU) https://{vault-name}.vault.azure.net Managed HSMs HSM-protected https://{hsm-name}.managedhsm.azure.net When…

Continue Reading How to use Azure Key Vault with managed identities and generating keys with auto-rotation

Microsoft Defender External Attack Surface Management (Defender EASM)

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 12/09/2022 0 Comments on Microsoft Defender External Attack Surface Management (Defender EASM)
Posted in Azure, Defender, Security

Defender family keep evolving and this time taking a look at Defender EASM. What is EASM? To give you an outside perspective of your online infrastructure, it continuously locates and maps your digital assault surface. With the use of this…

Continue Reading Microsoft Defender External Attack Surface Management (Defender EASM)

Section 7 – Design a strategy for data and applications – Specify security requirements for applications and design a strategy for securing data

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 07/09/2022 0 Comments on Section 7 – Design a strategy for data and applications – Specify security requirements for applications and design a strategy for securing data
Posted in Azure, Azure AD, Azure Policy, DevOps, Exchange, Identity, Identity Platform, Key vault, Microsoft 365, Microsoft Purview, Microsoft Sentinel, Security, Storage, Zero trust

And there you have it, this is the last section in my study guide. This time made longer posts, hopefully they weren’t too long to read. Stay tuned for more! Specify priorities for mitigating threats to applications. Specify a security…

Continue Reading Section 7 – Design a strategy for data and applications – Specify security requirements for applications and design a strategy for securing data

Microsoft managed Authentication Methods Policy (Preview)

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 03/09/2022 0 Comments on Microsoft managed Authentication Methods Policy (Preview)
Posted in Azure, Azure AD, Identity, Security

What Microsoft Managed is? With Microsoft Managed Settings, admins can trust Microsoft to enable a security feature they have not explicitly disabled. If the feature status is set to Microsoft-managed, it will be enabled by Microsoft at an appropriate time…

Continue Reading Microsoft managed Authentication Methods Policy (Preview)

Azure MFA migration tool and how to setup MFA NPS extension

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 01/09/2022 0 Comments on Azure MFA migration tool and how to setup MFA NPS extension
Posted in Active Directory, Azure, Conditional access, Hybrid, Security

Well, this is nice. Microsoft has released a migration tool to get rid of your On-premises MFA server. Scenarios Moving the registered MFA phone numbers is only part of the migration from MFA Server to Azure AD Multi-Factor Authentication. The…

Continue Reading Azure MFA migration tool and how to setup MFA NPS extension

Automatic assignment policy in Entitlement management

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 01/09/2022 0 Comments on Automatic assignment policy in Entitlement management
Posted in Azure, Azure AD, Azure B2B, Entitlement management, IAM, Identity, Security

If you are not familiar with Entitlement management, read this first. Microsoft keeps evolving Azure AD Entitlement management solution, here is a feature added previously. And there is again a new feature added, let us see what it is. Automatic…

Continue Reading Automatic assignment policy in Entitlement management