Category: Identity

Do’s and don’ts concerning security for Identity part 4

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 30/10/2022 0 Comments on Do’s and don’ts concerning security for Identity part 4
Posted in Azure, Azure AD, Azure B2B, Conditional access, Entitlement management, IAM, Identity, Microsoft 365, Microsoft Authenticator, Microsoft Graph, Security

Continuing with the do’s of Identity and supposing that you are in part of your journey that you have either Hybrid or fully cloud-based identities. In the last part I covered how you can use Hybrid Identity Administrator role, Automation…

Continue Reading Do’s and don’ts concerning security for Identity part 4

PowerShell 7.2.7 and Could not load type ‘System.Security.Cryptography.SHA256Cng’

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 28/10/2022 0 Comments on PowerShell 7.2.7 and Could not load type ‘System.Security.Cryptography.SHA256Cng’
Posted in Azure, Azure AD, Identity, Microsoft Graph, Powershell

The error is described in the title but what leads to this error? Generating the problem with Connect-AzureAD module When you have PowerShell 7.* installed and you want to install Azure AD module and connect to Azure AD, the install…

Continue Reading PowerShell 7.2.7 and Could not load type ‘System.Security.Cryptography.SHA256Cng’

Accessing Azure SQL with different methods

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 26/10/2022 0 Comments on Accessing Azure SQL with different methods
Posted in Azure, Azure AD, Conditional access, Identity, Powershell, Security, SQL

I decided to write about Azure SQL as inspired by an question from the community. The ask was “How to do I access Azure SQL with MFA enabled user, should I remove the MFA and create a normal user?” In…

Continue Reading Accessing Azure SQL with different methods

Additional context in Microsoft Authenticator notifications is now generally available!

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 23/10/2022 0 Comments on Additional context in Microsoft Authenticator notifications is now generally available!
Posted in Authentication methods, Azure, Azure AD, Identity, Microsoft Authenticator, Security

Why to use? Additional context is now out of preview and you really should enable it as soon as possible, it’s really really important that your users understand where they login from! Multi-factor authentication is excellent security feature, in the…

Continue Reading Additional context in Microsoft Authenticator notifications is now generally available!

Do’s and don’ts concerning security for Identity part 3

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 23/10/2022 0 Comments on Do’s and don’ts concerning security for Identity part 3
Posted in Azure, Azure AD, Azure AD Cloud Sync, Conditional access, Hybrid, Identity, Security

Continuing with the do’s of Identity and supposing that you have a Hybrid identity setup. This will translate to having Source of Authority (SoA) in your on-premises environment. We covered parts of user sync, what kind of solutions to use…

Continue Reading Do’s and don’ts concerning security for Identity part 3

Do’s and don’ts concerning security for Identity part 2

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 15/10/2022 0 Comments on Do’s and don’ts concerning security for Identity part 2
Posted in AAD Connect, Active Directory, Azure, Azure AD, Defender, Hybrid, Identity, Security

Continuing with the do’s of Identity and supposing that you have a Hybrid identity setup. If you still need (haven’t convinced you otherwise) federation services in on-premises, use should use Defender for Identity sensors for ADFS What it needs? ADFS…

Continue Reading Do’s and don’ts concerning security for Identity part 2

Certificate-based authentication is generally available!

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 12/10/2022 0 Comments on Certificate-based authentication is generally available!
Posted in Active Directory, Azure, Azure AD, Entra, Hybrid, Identity, Identity Platform, Microsoft Sentinel, Security

Microsoft announced today at Ignite 2022 that Certificate-Based Authentication is officially out of preview and ready to use! Why CBA was created? “In May of 2021, the President issued Executive Order 14028, Improving the Nation’s Cybersecurity calling for the Federal Government to modernize…

Continue Reading Certificate-based authentication is generally available!

Tips for studying and passing Microsoft Security exams – Updated (Ignite 2022) version

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 11/10/2022 0 Comments on Tips for studying and passing Microsoft Security exams – Updated (Ignite 2022) version
Posted in Azure, Certifications, Identity, Ignite 2022, Security

This an hyper-boosted revised version of my last guide for passing Microsoft exams so let’s get going. Ignite 2022 Ignite is starting tomorrow and guess what? You still have time to register you self! I believe most of you are…

Continue Reading Tips for studying and passing Microsoft Security exams – Updated (Ignite 2022) version

Conditional access and authentication strength (preview)

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 09/10/2022 0 Comments on Conditional access and authentication strength (preview)
Posted in Active Directory, Azure, Certificates, Conditional access, Entra, Hybrid, Identity, Security

First I wanted to mention the link problems inside Azure Portals. For a while and for some people portal.azure.com didn’t show the Authentication strengths in their portal, this has now been fixed in normal Azure portal. Entra portal on the…

Continue Reading Conditional access and authentication strength (preview)

Do’s and don’t concerning security for Identity part 1

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 01/10/2022 0 Comments on Do’s and don’t concerning security for Identity part 1
Posted in ADFS, Azure, Azure AD, Conditional access, Entra, Exchange, Identity, Identity Platform, Microsoft 365, Onpremise, Security

In simplified terms there is two different ways to build a cloud service. Cloud-based or Cloud native Hybrid There is also different possibilities to federate Identities between Cloud service providers but also with Federation services through on-premises environment. Azure AD…

Continue Reading Do’s and don’t concerning security for Identity part 1