Category: Security

Section 5 – Implement platform protection – Implement advanced network security – Azure Firewall

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 18/02/2022 0 Comments on Section 5 – Implement platform protection – Implement advanced network security – Azure Firewall
Posted in Azure, Azure Firewall, Certificates, Identity, Security

Time for the next part in the AZ-500 study preparation guide. This time were looking at: Create and configure Azure Firewall Create and configure Azure Firewall Manager What is Azure Firewall? Azure Firewall is a cloud-native and intelligent network firewall…

Continue Reading Section 5 – Implement platform protection – Implement advanced network security – Azure Firewall

Azure AD Verifiable Credentials (PowerShell version)

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 18/02/2022 0 Comments on Azure AD Verifiable Credentials (PowerShell version)
Posted in Azure, Azure AD, Security

In this blog post I will cover the setup Verifiable Credentials but first. What are Verifiable credentials? We use IDs in our daily lives. We have drivers licenses that we use as evidence of our ability to operate a car….

Continue Reading Azure AD Verifiable Credentials (PowerShell version)

Section 5 – Implement platform protection – Implement advanced network security – Hybrid and virtual networks

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 16/02/2022 0 Comments on Section 5 – Implement platform protection – Implement advanced network security – Hybrid and virtual networks
Posted in Azure, ESLZ, Hybrid, Security

In this part we will be discover the following: Secure the connectivity of hybrid networks Secure the connectivity of virtual networks Best practices for securing Your networks: There is a lot more than these but these are a good way…

Continue Reading Section 5 – Implement platform protection – Implement advanced network security – Hybrid and virtual networks

Azure AD certificate-based authentication (Preview) + Publishing CRL with Application Proxy

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 15/02/2022 0 Comments on Azure AD certificate-based authentication (Preview) + Publishing CRL with Application Proxy
Posted in Azure, Azure AD, Certificates, Identity, Onpremise, Security

Azure AD CBA allows user to sign-in with a certificate. Microsoft has removed the need for external ADFS federation. You can see the situation before this change from Sami Lamppu’s post. Feature highlights Facilitates onboarding to Azure quickly without being…

Continue Reading Azure AD certificate-based authentication (Preview) + Publishing CRL with Application Proxy

Cross-tenant access settings (Preview)

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 10/02/2022 0 Comments on Cross-tenant access settings (Preview)
Posted in Azure, Azure AD, Azure B2B, Identity, Security

Cross-tenant access settings in now in preview. You can use cross-tenant access settings to manage collaboration with external Azure AD organizations but for non-Azure AD organizations, use collaboration settings. https://portal.azure.com/#blade/Microsoft_AAD_IAM/AllowlistPolicyBlade What is Cross-tenant access? External Identities cross-tenant access settings to…

Continue Reading Cross-tenant access settings (Preview)

Section 3 – Manage application access

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 08/02/2022 0 Comments on Section 3 – Manage application access
Posted in Azure, Identity, Powershell, Security

This is the last part of section 3 and will cover two topics: Manage API permissions to Azure subscriptions and resources Configure an authentication method for a service principal Manage API permissions to Azure subscriptions and resources What is Azure…

Continue Reading Section 3 – Manage application access

Section 3 – Manage application access – Integrate single sign-on (SSO) and identity providers for authentication

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 04/02/2022 0 Comments on Section 3 – Manage application access – Integrate single sign-on (SSO) and identity providers for authentication
Posted in AAD Connect, Active Directory, Azure, Azure AD, Identity, Security

This is section 3 of AZ-500 preparation guide and starting with IdP and SSO. What is IdP? Azure AD is also consider as IdP, it can authenticate Your with different cloud services like Google and AWS. An identity provider (IdP)…

Continue Reading Section 3 – Manage application access – Integrate single sign-on (SSO) and identity providers for authentication

Information barriers, the GUI experience (Public preview)

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 02/02/2022 0 Comments on Information barriers, the GUI experience (Public preview)
Posted in Azure, Compliance, Identity, Information Barriers, Security

This pic above is exactly the opposite of how information barriers work. So how it works? When information barrier policies are in place, people who should not communicate or share files with other specific users won’t be able to find,…

Continue Reading Information barriers, the GUI experience (Public preview)

Section 3 – Manage application access – App Registrations

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 01/02/2022 0 Comments on Section 3 – Manage application access – App Registrations
Posted in Azure, Azure B2B, Azure B2C, Identity, Security

This is section 3 and part 2. In this post I will be covering App registrations with the following topics. Create an App Registration Configure App Registration permission scopes Manage App Registration permission consent What is App registration in Azure?…

Continue Reading Section 3 – Manage application access – App Registrations

Multi-tenant App registration and user (Admin) consent

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 31/01/2022 0 Comments on Multi-tenant App registration and user (Admin) consent
Posted in Access Reviews, Azure, Azure B2B, Azure B2C, Identity, Security

What has changed? Microsoft have removed ability for getting user consent for unverified applications. This is an great addition towards security but it will make your life harder as a admin and as a software publisher. Different options Let’s go…

Continue Reading Multi-tenant App registration and user (Admin) consent