Category: Azure

Section 2 – Secure access by using Azure AD – Implement Conditional Access policies, including multifactor authentication

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 17/01/2022 0 Comments on Section 2 – Secure access by using Azure AD – Implement Conditional Access policies, including multifactor authentication
Posted in Azure, Azure AD, Identity, Security

First we will cover the solutions in hand. What is Conditional access? Conditional Access is based on conditions for a location, devices used, risks discovered. Here is an excellent picture from Microsoft which explain the flow. Licensing You need at…

Continue Reading Section 2 – Secure access by using Azure AD – Implement Conditional Access policies, including multifactor authentication

Section 2 – Secure access by using Azure AD – How to Configure Azure AD Privileged Identity Management (PIM)

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 16/01/2022 0 Comments on Section 2 – Secure access by using Azure AD – How to Configure Azure AD Privileged Identity Management (PIM)
Posted in Azure, Azure AD, Identity, Security

This is part of section two for AZ-500 exam preparation. First we have to see what PIM is? Privileged Identity Management (PIM) provides a time-based and approval-based role activation to mitigate the risks of excessive, unnecessary, or misused access permissions to…

Continue Reading Section 2 – Secure access by using Azure AD – How to Configure Azure AD Privileged Identity Management (PIM)

Section 1 – Manage Azure Active Directory identities

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 13/01/2022 0 Comments on Section 1 – Manage Azure Active Directory identities
Posted in AAD Connect, Azure, Azure AD, Azure B2B, Certifications, Identity, Security

This is the first section from study series for AZ-500 – Manage Azure Active Directory identities and starting with Create and manage a managed identity for Azure resources In my example I will use Virtual Machines, you can also use…

Continue Reading Section 1 – Manage Azure Active Directory identities

AZ-500 exam preparation series

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 13/01/2022 0 Comments on AZ-500 exam preparation series
Posted in Azure, Certifications

When I studied to my own AZ-500, I decided that I will make my own Exam Cram, study guide or whatever you want to call it. The goal will be on passing the exam or just refreshing Your brain. I…

Continue Reading AZ-500 exam preparation series

Azure storage accounts and how to secure them?

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 10/01/2022 0 Comments on Azure storage accounts and how to secure them?
Posted in Azure, Azure AD, Defender, IAM, Identity, Security, Storage

In the last part I explained what storage accounts are and how you can access them. In this part I will explain how to protect them from insider or external risks. Defender for storage Azure storage accounts are billed hourly….

Continue Reading Azure storage accounts and how to secure them?

Azure B2C with AFD and custom domain(s)

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 05/01/2022 0 Comments on Azure B2C with AFD and custom domain(s)
Posted in Active Directory, Azure, Azure B2C, Identity, Security

Be default Azure B2C comes with onmicrosoft.com login url. If you want to change it, you have to make use of custom domains via Azure Frontdoor. How to? Microsoft has an excellent article to establish this requirement. In the article…

Continue Reading Azure B2C with AFD and custom domain(s)

Storage accounts and the differences between SAS keys and Access keys.

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 03/01/2022 0 Comments on Storage accounts and the differences between SAS keys and Access keys.
Posted in Azure, Azure AD, Identity, Security, Storage

Do you know how to secure your Storage Accounts? How about the differences between SAS keys and Access Keys? Some of you do but many of you don’t, so let me make an introduction to the differences. This is a…

Continue Reading Storage accounts and the differences between SAS keys and Access keys.

Insider risk management continued, device onboarding and protection

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 30/12/2021 0 Comments on Insider risk management continued, device onboarding and protection
Posted in Azure, Compliance, Data Loss Prevention, Identity, Security

Now to part two of this series and onboarding devices to Compliance center. Continuing device onboarding. Go to device onboarding. You have these options to onboard. I will be choosing local scripts but the fundamentals will be the same no…

Continue Reading Insider risk management continued, device onboarding and protection

Key auto-rotation in Azure Key Vault (preview)

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 27/12/2021 0 Comments on Key auto-rotation in Azure Key Vault (preview)
Posted in Azure, Certificates, Identity, Security

Key rotation is Azure Key Vault is crucial for the safety of the keys stored in vault. You can store encryption keys, SAS-keys, user credentials, API keys and other secret then you can call them with in your queries. What…

Continue Reading Key auto-rotation in Azure Key Vault (preview)

Azure AD Connect 2.0.89.0 – How to un-break your Exchange Hybrid

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 23/12/2021 0 Comments on Azure AD Connect 2.0.89.0 – How to un-break your Exchange Hybrid
Posted in AAD Connect, Azure, Exchange, Hybrid, Identity

AAD Connect v.2.0.88.0 came just a week ago and it had an ugly bug. What’s wrong? All the user that will be disabled in Exchange Hybrid environments will have their mailboxes deleted from the cloud. Shared Mailboxes had a long…

Continue Reading Azure AD Connect 2.0.89.0 – How to un-break your Exchange Hybrid