Retention policies why and how?

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 12/10/2021 0 Comments on Retention policies why and how?
Posted in Azure AD, Compliance, Office 365, Retention

The picture above is from one of the many CISSP videos that I have watched but it came to good point as I was planning to write a posts about data retention and why it matters. So why it matters?…

Continue Reading Retention policies why and how?

Azure AD guest users and how to manage them?

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 09/10/2021 0 Comments on Azure AD guest users and how to manage them?
Posted in Azure, Azure B2B, IAM, Identity

Well this is true for the digital society. Before it was your passwords you had to keep safe. Now the password doesn’t make a huge difference as it should be only the first stage of sign-in process and second would…

Continue Reading Azure AD guest users and how to manage them?

AAD Identity protection and Hybrid Identity

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 08/10/2021 0 Comments on AAD Identity protection and Hybrid Identity
Posted in AAD Connect, Active Directory, Azure, Azure AD, Hybrid, Identity

In the past years Microsoft made some excellent improvements for securing the Identity. One of these features was Azure AD Identity Protection and it’s proxy version to allow your policies to flow inside on-premises AD. It uses the same kinda…

Continue Reading AAD Identity protection and Hybrid Identity

Continuous Access Evaluation and working with tokens

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 05/10/2021 0 Comments on Continuous Access Evaluation and working with tokens
Posted in ADFS, Azure, Azure AD, Identity, Security

Access, ID, and SAML2 ID tokens are JSON web tokens (JWT). These ID tokens consist of a header, payload, and signature. The header and signature are used to verify the authenticity of the token, while the payload contains the information about…

Continue Reading Continuous Access Evaluation and working with tokens

Kali Linux in Azure VM

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 02/10/2021 0 Comments on Kali Linux in Azure VM
Posted in Azure, Kali

Quicktip! While running apt-update in Kali Linux 4.19.0 you will get following error. “Failed to fetch http://http.kali.org/kali/dists/kali-rolling/InRelease The following signatures were invalid: EXPKEYSIG ED444FF07D8D0BF6” Fix: run as sudo wget -q -O – http://archive.kali.org/archive-key.asc | apt-key add Note! wget -q -O…

Continue Reading Kali Linux in Azure VM

Defender for Identity deep dive part 1 of 3

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 29/09/2021 0 Comments on Defender for Identity deep dive part 1 of 3
Posted in Azure, Defender, Identity, Onpremise, Security

I decided to do a deep dive on Defender for Identity and this is part 1 of that series. What is (was) Defender for Identity? Defender ATP was before called Azure Advanced Threat Protection (Azure ATP) and Defender for Identity…

Continue Reading Defender for Identity deep dive part 1 of 3

Azure MFA Extensions and Network Policy Server

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 27/09/2021 0 Comments on Azure MFA Extensions and Network Policy Server
Posted in AAD Connect, Active Directory, Azure, Azure AD, Defender, Hybrid, Identity, Onpremise, Security

Half legacy but half cloud. Many organizations use NPS for securing their wlan and lan traffic or just to authenticate user based on their location inside AD or group memberships. NPS is Microsoft radius-based access management solutions that has been…

Continue Reading Azure MFA Extensions and Network Policy Server

What’s new with AAD Connect V2 and why to migrate?

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 25/09/2021 0 Comments on What’s new with AAD Connect V2 and why to migrate?
Posted in AAD Connect, Active Directory, ADFS, Azure, Azure AD, Hybrid, Identity

History of AAD Connect User synchronization solutions has been here for a long time and they have evolved all the time, sometimes faster sometimes slower. Middle of September Microsoft released a new main version from Azure AAD Connect and the…

Continue Reading What’s new with AAD Connect V2 and why to migrate?

Autodiscover redirect leakage

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 23/09/2021 0 Comments on Autodiscover redirect leakage
Posted in Azure, Defender, Exchange, Identity, Onpremise

** This doesn’t concern Exchange Online in any way, only on-premise versions ** Today Guaricore lab team discovered on-premises Exchange autodiscover vulnerability. I want to call my blog post “Autodiscovering the Great Leak” but that seems like too much as…

Continue Reading Autodiscover redirect leakage

How integrate Azure defender with Azure ARC to multiple environments

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 23/09/2021 0 Comments on How integrate Azure defender with Azure ARC to multiple environments
Posted in Azure, Azure ARC, Defender, Hybrid, Onpremise

So what is Azure ARC? Azure ARC was first introduced at Ignite 2019. Azure ARC enables you to manage servers in different realms no matter in what AD it is. It will allow you to use Azure Resource Manager templates though…

Continue Reading How integrate Azure defender with Azure ARC to multiple environments