Category: Security

Hybrid identity and how to protect your users?

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 07/11/2021 0 Comments on Hybrid identity and how to protect your users?
Posted in Access Reviews, Azure AD, Compliance, Hybrid, Identity, Security

Hybrid identity in a trendy way to distribute your identity across cloud services. Identity has always been an important part in user interactions with services. It’s your unique identifier in the directory that you belong to. This theme can also…

Continue Reading Hybrid identity and how to protect your users?

Conditional Access – CAE and Resilience defaults

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 02/11/2021 0 Comments on Conditional Access – CAE and Resilience defaults
Posted in Azure, Conditional access, Security

In the beginning of this month I wrote about CAE and and now it came Globally available. It was there but now it’s gone and the only option you have is to disable or enforce it. So what is Continuous…

Continue Reading Conditional Access – CAE and Resilience defaults

Continuous Access Evaluation and working with tokens

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 05/10/2021 0 Comments on Continuous Access Evaluation and working with tokens
Posted in ADFS, Azure, Azure AD, Identity, Security

Access, ID, and SAML2 ID tokens are JSON web tokens (JWT). These ID tokens consist of a header, payload, and signature. The header and signature are used to verify the authenticity of the token, while the payload contains the information about…

Continue Reading Continuous Access Evaluation and working with tokens

Defender for Identity deep dive part 1 of 3

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 29/09/2021 0 Comments on Defender for Identity deep dive part 1 of 3
Posted in Azure, Defender, Identity, Onpremise, Security

I decided to do a deep dive on Defender for Identity and this is part 1 of that series. What is (was) Defender for Identity? Defender ATP was before called Azure Advanced Threat Protection (Azure ATP) and Defender for Identity…

Continue Reading Defender for Identity deep dive part 1 of 3

Azure MFA Extensions and Network Policy Server

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 27/09/2021 0 Comments on Azure MFA Extensions and Network Policy Server
Posted in AAD Connect, Active Directory, Azure, Azure AD, Defender, Hybrid, Identity, Onpremise, Security

Half legacy but half cloud. Many organizations use NPS for securing their wlan and lan traffic or just to authenticate user based on their location inside AD or group memberships. NPS is Microsoft radius-based access management solutions that has been…

Continue Reading Azure MFA Extensions and Network Policy Server

Office 365 ORCA and Configuration analyzer

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 20/09/2021 0 Comments on Office 365 ORCA and Configuration analyzer
Posted in Azure, Compliance, Defender, Identity, Microsoft 365, Security

I don’t how many of you ever used ORCA or Configuration analyzer? I have missed ORCA (Office 365 Advanced Threat Protection Recommended Configuration Analyzer) completely. I can see that it was introduced at Ignite 2019 but somehow I missed it….

Continue Reading Office 365 ORCA and Configuration analyzer

Identity protection in the cloud and of the cloud.

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 10/09/2021 0 Comments on Identity protection in the cloud and of the cloud.
Posted in Azure, Azure AD, Identity, Microsoft 365, Security

This is the first part of Identity blog series. “Identity is the new perimeter” was probably first said in 2018 at Identiverse. And it is actually true, identity is all you have in the Evergreen cloud service. There can’t be…

Continue Reading Identity protection in the cloud and of the cloud.

Enterprise applications SSO with custom manifest configuration

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 08/09/2021 0 Comments on Enterprise applications SSO with custom manifest configuration
Posted in Active Directory, ADFS, Azure, Azure AD, Certificates, Compliance, Identity, Security

Hi, Didn’t find an article about this, so I decided to gather the pieces and put them in one place. First little bit of background. You have Azure AD and  on-premises or cloud-based application that you want to allow SSO…

Continue Reading Enterprise applications SSO with custom manifest configuration

Using attack simulator for user education and gather insights.

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 07/09/2021 0 Comments on Using attack simulator for user education and gather insights.
Posted in Compliance, Exchange, Identity, Microsoft 365, Office 365, Security

This is part 2 of compliance and user governance. Here is part 1. Attack simulator is a tool for educating users and gathering insights on what they do wrong or right. Who can use it? If your organization has Microsoft…

Continue Reading Using attack simulator for user education and gather insights.

Why to go passwordless and how get there?

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 03/09/2021 0 Comments on Why to go passwordless and how get there?
Posted in Azure, Azure AD, Identity, Security

Password have always been a major headache for people. And always consultant have said that password complexity matters, there any a lot of pages providing to check how secure your password is. What then if your password will be cracked…

Continue Reading Why to go passwordless and how get there?