BYOD – Part 1 – The Love-Hate Relationship
This is a 2 part series and I would like to get to the nitty gritty of BYOD because as IT Pros or leaders who…
It’s 2023. Let’s Talk About Azure AD Connect Cloud Sync
The first post for 2023 and I thought I want to focus on something that will take over the main stage soon (probably). Azure AD…
Azure AD Cross-Tenant Access with B2B Direct Connect
This is my take on the Azure AD Cross-Tenant access settings. This was something I was hoping to configure a while back. However the capabilities…
Microsoft Entra Identity Governance – Connecting the Dots
Been working on this blog post for a while as this talks about an important service in Azure AD. In a standard organization environment, how…
How to Configure Azure AD Connect Sync and Cloud Sync Tools to Prevent Accidental Object Deletions
This blog post is a combination of old and new features of Azure AD Connect Sync and Azure AD Cloud Sync tools. AAD Connect Sync…
Latest Microsoft Authenticator App/ MFA Improvements
Exciting new improvements in the Microsoft Authenticator front. This is a step towards phishing attacks that can lead to accidental MFA approvals. We all know…
How to Configure Azure AD Authentication Strengths
Require Multifactor Authentication is good, but what if the methods that can be registered aren’t powerful enough to secure the resources? Eg: Accept the Auth…
Azure AD Device Registration – Part 2 – Use Azure Automation to Get Notified When Devices Go Pending State
This is the 2nd post of this 2 part troubleshooting series and In the 1st part of this series I showed you why the devices…
Azure AD Device Registration – Part 1 – How to Fix the Pending Registration State Issue?
Firstly I must say, during your cloud journey you may have seen this error many times and fixed this many times. Also there can be…
[Product Feature] Passwordless Authentication with FEITIAN BioPass FIDO2 Security Key K49
FEITIAN Technologies recently reached me out via LinkedIn to request if I can review one of their latest Passwordless key products – K49. This is…
Get Notified When You Have Group Based License Assignment Issues
I’m considered as a citizen developer and I know the ways to get some automation happening when it needed the most. This is one of…
Microsoft Entra – An Overview
Woke up to a nice little surprise from Microsoft this morning. Microsoft Entra. At first glance It looked like they have bundled the Identity and…
Use Conditional Access Policies to Securely Register Security Information for MFA and SSPR
Hello there! This week I thought I will write one more article on Conditional Access Policies. As you know setting up an access policy is…
Azure AD Conditional Access Policies 101
By now anyone who is in the industry, looking at Azure AD daily basis and who are thinking about how to implement Zero-Trust know what…
How to Use KQL and Azure Log Analytics to Inspect Azure AD Sign-in Logs?
As you may already know KQL has become the standard for querying large data sets in Azure Log Analytics space. When you have thousands of…
Two Ways To Enable Hybrid AAD Join Mode For A Controlled Deployment
When you planning (of course you are!) to bring the local AD joined Windows workstations to Microsoft Endpoint Manager/ Intune, one of the first things…
How to use Microsoft Graph and Power Automate to Automate Teams Creation With a Template
Often times the issue with the IT Admins is with the ever growing Teams popularity, how to beat the demand and how to create Teams…
Manage Continues Access Evaluation behaviour via Conditional Access Polices
When I first had a play with CAE for the 1st time, I wrote about on the importance of this setting and how to enable…
Azure AD Break Glass Account: What to consider when creating one and how to monitor sign ins
With the growing threats around the world everyday, bad actors are targeting Microsoft 365 ecosystem like never before. Attacks are taking place everyday and if…
Azure AD Hidden Gems. Azure AD Temporary Access Pass
Temporary Access Pass or TAP, is a cool Azure AD feature which is still in Preview, but I see huge wins if Microsoft put this…
How to Assign Admin Roles to Azure AD Groups with Access Reviews and Just in Time Access?
As of July 31 2021, this feature in Generally Available and was notified in the M365 Admin Center with the message MC274516 This approach is…
How to analyze Conditional Access Policies with ‘Report Only’ Mode?
Conditional Access Polices can be setup in 3 main modes. On/ Off/ Report Only. On and Off modes are self explanatory where “Report Only” mode…
Why Azure AD Continues Access Evaluation is Important?
Continues Access Evaluation or CAE is still in preview, but it has proven to refresh the near-real time refresh for Conditional Access Policies. Ideally this…
Automate Cross Tenant Resource Access With Azure AD Entitlement Management
With the Azure AD Identity Governance feature “Entitle Management” it is easier to automate the access requests, set expiry dates, justify why a user needs…
3 Ways to Enforce Azure AD MFA Registration in Azure AD/ M365 Tenant
Requirement of having MFA on Azure AD accounts are top priority at the moment and basically it has become a basic requirement. There are couple…
Azure AD Passwordless Authentication with Yubico FIDO2 key
Lately I got the opportunity to test the latest Identity Authentication method with Azure AD. None other than the Passwordless Authentication. I will post few…
Cool and a Powerful feature to stop bulk accidental/ intentional deletion exports in an Azure AD Hybrid Environment
This is a hidden gem for Azure AD Sync connect configurations and I was looking for a feature like this for sometime now. Noticed this…
Azure MFA Authentication Loop Fix
Issue: Office 365 Web apps users (SharePoint Online, Office.com, OWA etc.) will receive the MFA prompt every time after opening the browser.Ideally the browser should…
Effective use of Azure AD Administrative Units [Azure AD AUs]
I look at the Azure AD portal with curiosity to see what are the new features and then want to play around with them to…
How to federate Google (Gmail) accounts with Azure AD to access resources without a Microsoft account
My DIY project for this weekend is to try and implement a method to set Google as an identity provider for Azure AD resource access…
Microsoft 365 Groups Cheat Sheet
This is my compilation of the something out of everything you need to know about the M365 Groups. Over the course of time Microsoft brought…
Azure AD User Automation For Better Identity And Access Management
Why automate such a workload? Few reasons though Better Identity and access managementNot having to update too many locations for these type of requestsMeet demands/…
Blocking Basic Auth – Personal Thoughts
Sometime a go I wrote on How to Disable Basic auth to make way to Modern Authentication. The procedure is manageable and with a bit…
Azure AD Connect Cloud Provisioning. The new feature that may come in handy!
Microsoft have finally answered the prayers of the IT admins! Long story short, gone of the days where the IT admins had to make sure…
Microsoft is retiring Basic Authentication, because Modern Authentication is here to stay!
Microsoft have announced that they will retire the Basic Authentication method from Office 365 Exchange Online and make Modern Authentication method the standard way of…
Azure AD Group Based Licensing
As opposed to adding cloud based licenses per user basis or via PowerShell to automate license assignment with a security group, Azure’s group based licensing…
TLS 1.0 and TLS 1.1 End is Near!
If you are an Office 365 admin like myself, you may have received many notifications from Microsoft regarding the TLS 1.0 being deprecated in their…
Sync Now, Consolidate Later
Companies acquiring other companies as they grow. For IT, it’s a never ending nightmare to bring the systems in-line. Projects that involves setting up new…
Get new content delivered directly to your inbox.