Category: Defender

Do’s and don’ts concerning security for Identity part 2

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 15/10/2022 0 Comments on Do’s and don’ts concerning security for Identity part 2
Posted in AAD Connect, Active Directory, Azure, Azure AD, Defender, Hybrid, Identity, Security

Continuing with the do’s of Identity and supposing that you have a Hybrid identity setup. If you still need (haven’t convinced you otherwise) federation services in on-premises, use should use Defender for Identity sensors for ADFS What it needs? ADFS…

Continue Reading Do’s and don’ts concerning security for Identity part 2

Defender for Cloud security alerts

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 30/09/2022 0 Comments on Defender for Cloud security alerts
Posted in Azure, Defender, Hybrid, Identity, KQL, Security

The scenario You have a Windows server with a public IP-address and RDP (TCP 3389) is exposed to internet. And there is still over 3 million open TCP 3389 ports out there. Stupid right but if you are one of…

Continue Reading Defender for Cloud security alerts

Microsoft Defender SmartScreen in Windows 11 22H2

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 27/09/2022 0 Comments on Microsoft Defender SmartScreen in Windows 11 22H2
Posted in Azure, Defender, Microsoft 365, Powershell, Security

Have you noticed that there is a really handy security feature that came to Windows 11 in version 22H2 But It’s not enabled by default and it also requires you to log into Windows with your password instead of Windows…

Continue Reading Microsoft Defender SmartScreen in Windows 11 22H2

Microsoft Defender External Attack Surface Management (Defender EASM)

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 12/09/2022 0 Comments on Microsoft Defender External Attack Surface Management (Defender EASM)
Posted in Azure, Defender, Security

Defender family keep evolving and this time taking a look at Defender EASM. What is EASM? To give you an outside perspective of your online infrastructure, it continuously locates and maps your digital assault surface. With the use of this…

Continue Reading Microsoft Defender External Attack Surface Management (Defender EASM)

Section 6 – Design security for infrastructure – Design a strategy for securing SaaS, PaaS, and IaaS services

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 31/08/2022 0 Comments on Section 6 – Design security for infrastructure – Design a strategy for securing SaaS, PaaS, and IaaS services
Posted in Azure, Defender, Key vault, Security, SQL, Zero trust

Time for the next section to my SC-100 study guide: Specify security baselines for SaaS, PaaS, and IaaS services Specify security requirements for IoT workloads Specify security requirements for data workloads, including SQL, Azure SQL Database, Azure Synapse and Azure…

Continue Reading Section 6 – Design security for infrastructure – Design a strategy for securing SaaS, PaaS, and IaaS services

Microsoft Defender for Cloud Apps in Microsoft 365 Defender (Preview)

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 08/08/2022 0 Comments on Microsoft Defender for Cloud Apps in Microsoft 365 Defender (Preview)
Posted in Azure, Defender, Identity, Security

Microsoft is all the time consolidating their various different portals, they already removed multiple portals during recent years. Here is a full list of the current ones, sigh! Turn on Preview features Required permissions Accounts assigned the following Azure Active…

Continue Reading Microsoft Defender for Cloud Apps in Microsoft 365 Defender (Preview)

Section 14 – Secure data and applications – Configure security for databases

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 22/05/2022 0 Comments on Section 14 – Secure data and applications – Configure security for databases
Posted in Azure, Azure AD, Azure Firewall, Defender, Identity, Microsoft Purview, Security, SQL

In this section I will cover the following: Enable database authentication by using Azure AD Enable database auditing Configure dynamic masking on SQL workloads Implement database encryption for Azure SQL Database Implement network isolation for data solutions, including Azure Synapse…

Continue Reading Section 14 – Secure data and applications – Configure security for databases

Section 13 – Secure data and applications – Configure security for storage

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 15/05/2022 0 Comments on Section 13 – Secure data and applications – Configure security for storage
Posted in Azure, Defender, Hybrid, Identity, Onpremise, Security, Storage

Configure access control for storage accounts Configure storage account access keys Configure Azure AD authentication for Azure Storage and Azure Files Different Storage Accounts types The Azure Storage platform includes the following data services: Azure Blobs A massively scalable object…

Continue Reading Section 13 – Secure data and applications – Configure security for storage

Section 10 – Manage security operations – Configure and manage threat protection

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 04/05/2022 0 Comments on Section 10 – Manage security operations – Configure and manage threat protection
Posted in Azure, Defender, Identity, Security

And time for next section for my AZ-500 study guide, continuing with the following. Configure Azure Defender for Servers (not including Microsoft Defender for Endpoint) Evaluate vulnerability scans from Azure Defender Configure Azure Defender for Servers What is inside Defender…

Continue Reading Section 10 – Manage security operations – Configure and manage threat protection

2022 H1 Cumulative Updates for Exchange Server

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 21/04/2022 0 Comments on 2022 H1 Cumulative Updates for Exchange Server
Posted in AAD Connect, Active Directory, Azure, Azure AD, Defender, Exchange, Identity, Microsoft 365, Migrate, Office 365, Onpremise, Powershell, Security

What was released? With 2022 H1 there came some significant update to how You manage and license your Exchange-servers in a Hybrid setup. Exchange Management Tools Update You don’t anymore need Exchange Server for management purposes (Management Hybrid) you can…

Continue Reading 2022 H1 Cumulative Updates for Exchange Server