Category: Conditional access

Do’s and don’ts concerning security for Identity part 3

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 23/10/2022 0 Comments on Do’s and don’ts concerning security for Identity part 3
Posted in Azure, Azure AD, Azure AD Cloud Sync, Conditional access, Hybrid, Identity, Security

Continuing with the do’s of Identity and supposing that you have a Hybrid identity setup. This will translate to having Source of Authority (SoA) in your on-premises environment. We covered parts of user sync, what kind of solutions to use…

Continue Reading Do’s and don’ts concerning security for Identity part 3

ChromeOS Flex and my findings for the security

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 19/10/2022 0 Comments on ChromeOS Flex and my findings for the security
Posted in Azure, Azure AD, Conditional access, Entra, Security

What is ChromeOS Flex? It’s always nice to discover new things in this multi-cloud and multi-OS world of yours. Google bough Neverware back in 2020 and now there has been some working versions of ChromeOS Flex which is based on…

Continue Reading ChromeOS Flex and my findings for the security

Conditional access and authentication strength (preview)

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 09/10/2022 0 Comments on Conditional access and authentication strength (preview)
Posted in Active Directory, Azure, Certificates, Conditional access, Entra, Hybrid, Identity, Security

First I wanted to mention the link problems inside Azure Portals. For a while and for some people portal.azure.com didn’t show the Authentication strengths in their portal, this has now been fixed in normal Azure portal. Entra portal on the…

Continue Reading Conditional access and authentication strength (preview)

Do’s and don’t concerning security for Identity part 1

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 01/10/2022 0 Comments on Do’s and don’t concerning security for Identity part 1
Posted in ADFS, Azure, Azure AD, Conditional access, Entra, Exchange, Identity, Identity Platform, Microsoft 365, Onpremise, Security

In simplified terms there is two different ways to build a cloud service. Cloud-based or Cloud native Hybrid There is also different possibilities to federate Identities between Cloud service providers but also with Federation services through on-premises environment. Azure AD…

Continue Reading Do’s and don’t concerning security for Identity part 1

What’s new with Secure score in Microsoft Defender portal (and some other tips)

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 25/09/2022 0 Comments on What’s new with Secure score in Microsoft Defender portal (and some other tips)
Posted in Azure, Azure AD, Conditional access, Entra, Identity, Microsoft 365, Security

What is Secure score? Microsoft releases suggestions on security settings that should be turned on to enhance your security posture against external and internal threats. You’re given points for the following actions: Configuring recommended security features Doing security-related tasks Addressing…

Continue Reading What’s new with Secure score in Microsoft Defender portal (and some other tips)

Azure MFA migration tool and how to setup MFA NPS extension

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 01/09/2022 0 Comments on Azure MFA migration tool and how to setup MFA NPS extension
Posted in Active Directory, Azure, Conditional access, Hybrid, Security

Well, this is nice. Microsoft has released a migration tool to get rid of your On-premises MFA server. Scenarios Moving the registered MFA phone numbers is only part of the migration from MFA Server to Azure AD Multi-Factor Authentication. The…

Continue Reading Azure MFA migration tool and how to setup MFA NPS extension

TOTP globally available for Azure AD B2C

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 17/08/2022 0 Comments on TOTP globally available for Azure AD B2C
Posted in Azure, Azure B2B, Azure B2C, Conditional access, Identity, Identity Platform, Microsoft Graph, Powershell, Security

I wrote before a post about B2C in general, how to use our own custom domain thru Azure Front door and how to use custom policies. I prefer that you read these out to get clearer picture of B2C functionality….

Continue Reading TOTP globally available for Azure AD B2C

Microsoft authenticator password generator and couple of other new features

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 06/05/2022 0 Comments on Microsoft authenticator password generator and couple of other new features
Posted in Azure, Azure AD, Conditional access, Identity, Security

Hi all, Wanted to share some news on Microsoft Authenticator new features for this Friday. Generating Strong passwords Cool feature, that wasn’t there before. Yep, it wasn’t. See the screenshots for more insights. Enable Autofill with Authenticator How do I…

Continue Reading Microsoft authenticator password generator and couple of other new features

Section 9 – Implement an Authentication and Access Management Solution – Manage Azure AD Identity Protection

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 25/03/2022 0 Comments on Section 9 – Implement an Authentication and Access Management Solution – Manage Azure AD Identity Protection
Posted in Azure, Azure AD, Conditional access, Identity, Security

Second half of section 9 and going down with: implement and manage a user risk policy implement and manage sign-in risk policy implement and manage MFA registration policy monitor, investigate and remediate elevated risky users What is Identity Protection? Identity…

Continue Reading Section 9 – Implement an Authentication and Access Management Solution – Manage Azure AD Identity Protection

Some of my personal favorites for auditing Microsoft environments

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 24/03/2022 0 Comments on Some of my personal favorites for auditing Microsoft environments
Posted in AAD Connect, ADFS, AIP, Azure, Azure AD, Azure B2B, Azure Information Protection, Compliance, Conditional access, Data Loss Prevention, Identity, Microsoft 365, Security

Professionals are always finding out ways to report M365 or Azure environments, automating activities or remediating threats. There is insane amount of content available to achieve these goals but I want to list some of my favorites in this post….

Continue Reading Some of my personal favorites for auditing Microsoft environments