Category: Azure AD

Automatic assignment policy in Entitlement management

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 01/09/2022 0 Comments on Automatic assignment policy in Entitlement management
Posted in Azure, Azure AD, Azure B2B, Entitlement management, IAM, Identity, Security

If you are not familiar with Entitlement management, read this first. Microsoft keeps evolving Azure AD Entitlement management solution, here is a feature added previously. And there is again a new feature added, let us see what it is. Automatic…

Continue Reading Automatic assignment policy in Entitlement management

Section 5 – Design security for infrastructure – Design a strategy for securing server and client endpoints

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 24/08/2022 0 Comments on Section 5 – Design security for infrastructure – Design a strategy for securing server and client endpoints
Posted in AAD Connect, Active Directory, ADFS, Azure, Azure AD, Azure Policy, Certificates, Key vault, Security, Zero trust

Wednesday is here and time for the next post to my SC-100 exam cram. NOTE: includes hybrid and multi-cloud Specify security baselines for server and client endpoints Specify security requirements for servers, including multiple platforms and operating systems Specify security…

Continue Reading Section 5 – Design security for infrastructure – Design a strategy for securing server and client endpoints

Section 3 – Design a Zero Trust strategy and architecture – Design an identity security strategy

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 10/08/2022 0 Comments on Section 3 – Design a Zero Trust strategy and architecture – Design an identity security strategy
Posted in Azure, Azure AD, Azure B2B, Azure B2C, Hybrid, Identity, sc-100, Security

And onward to the next section in my SC-100 study guide: Note: includes hybrid and multi-cloud scenarios! Design a strategy for access to cloud resources Recommend an identity store (tenants, B2B, B2C, hybrid) Recommend an authentication strategy Recommend an authorization…

Continue Reading Section 3 – Design a Zero Trust strategy and architecture – Design an identity security strategy

Microsoft Entra Verified ID went GA!

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 09/08/2022 0 Comments on Microsoft Entra Verified ID went GA!
Posted in Azure, Azure AD, Entra, Security

Back in 2018 Microsoft joined ID2020 alliance and started collaborating with Accenture and Avanade on a blockchain-based identity prototype for Azure. The intention was to give people means to identify them selves easily. And finally Yesterday Microsoft released the final product!…

Continue Reading Microsoft Entra Verified ID went GA!

Microsoft Entra Permissions Management

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 08/06/2022 0 Comments on Microsoft Entra Permissions Management
Posted in Azure, Azure AD, Entra, Hybrid, Identity, Identity Platform

Entra has combined three existing solutions under entra.microsoft.com: Azure Active Directory (Azure AD)  Multicloud identity and access management solution with integrated security.  Microsoft Entra Permissions Management​  One unified model to manage permissions ​of any identity across any cloud.  Microsoft Entra Verified ID​ …

Continue Reading Microsoft Entra Permissions Management

Section 14 – Secure data and applications – Configure security for databases

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 22/05/2022 0 Comments on Section 14 – Secure data and applications – Configure security for databases
Posted in Azure, Azure AD, Azure Firewall, Defender, Identity, Microsoft Purview, Security, SQL

In this section I will cover the following: Enable database authentication by using Azure AD Enable database auditing Configure dynamic masking on SQL workloads Implement database encryption for Azure SQL Database Implement network isolation for data solutions, including Azure Synapse…

Continue Reading Section 14 – Secure data and applications – Configure security for databases

Microsoft authenticator password generator and couple of other new features

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 06/05/2022 0 Comments on Microsoft authenticator password generator and couple of other new features
Posted in Azure, Azure AD, Conditional access, Identity, Security

Hi all, Wanted to share some news on Microsoft Authenticator new features for this Friday. Generating Strong passwords Cool feature, that wasn’t there before. Yep, it wasn’t. See the screenshots for more insights. Enable Autofill with Authenticator How do I…

Continue Reading Microsoft authenticator password generator and couple of other new features

Section 9 – Manage security operations – Configure centralized policy management

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 01/05/2022 0 Comments on Section 9 – Manage security operations – Configure centralized policy management
Posted in Azure, Azure AD, Azure Policy, Identity, Security

And this time AZ-500 study guide covers: Configure a custom security policy Create a policy initiative Configure security settings and auditing by using Azure Policy Configure a custom security policy Elements The policy definition policyRule schema is found here: https://schema.management.azure.com/schemas/2020-10-01/policyDefinition.json You use JSON…

Continue Reading Section 9 – Manage security operations – Configure centralized policy management

Section 8 – Implement platform protection – Configure advanced security for compute – Serverless, App service and encryption

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 27/04/2022 0 Comments on Section 8 – Implement platform protection – Configure advanced security for compute – Serverless, App service and encryption
Posted in Azure, Azure AD, Identity, Identity Platform, Security

And the next section for AZ-500 study guide will cover the following topics: Configure security for serverless compute Configure security for an Azure App Service Configure encryption at rest Configure encryption in transit Configure security for serverless compute Serverless computing…

Continue Reading Section 8 – Implement platform protection – Configure advanced security for compute – Serverless, App service and encryption

Section 7 – Implement platform protection – Configure advanced security for compute – Security and access for container services

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 24/04/2022 0 Comments on Section 7 – Implement platform protection – Configure advanced security for compute – Security and access for container services
Posted in Azure, Azure AD, Identity, Security

And the AZ-500 study guide continues with the following topics: Configure security for container services Manage access to Azure Container Registry What are containers? A container is a pre-built software environment in which application code and its dependencies are preloaded…

Continue Reading Section 7 – Implement platform protection – Configure advanced security for compute – Security and access for container services