How to Assign Admin Roles to Azure AD Groups with Access Reviews and Just in Time Access?
As of July 31 2021, this feature in Generally Available and was notified in the M365 Admin Center with the message MC274516 This approach is how you assign roles to Azure AD Groups along with the Privileged Identity Management features […]
How to analyze Conditional Access Policies with ‘Report Only’ Mode?
Conditional Access Polices can be setup in 3 main modes. On/ Off/ Report Only. On and Off modes are self explanatory where “Report Only” mode needs additional work. This post will go in detail on how to use the Report […]
Why Azure AD Continues Access Evaluation is Important?
Continues Access Evaluation or CAE is still in preview, but it has proven to refresh the near-real time refresh for Conditional Access Policies. Ideally this is a very helpful feature in the world of Identity and Access Management, because there […]
Automate Cross Tenant Resource Access With Azure AD Entitlement Management
With the Azure AD Identity Governance feature “Entitle Management” it is easier to automate the access requests, set expiry dates, justify why a user needs access and get the load out of the IT admins. Azure B2B collaboration is a […]
3 Ways to Enforce Azure AD MFA Registration in Azure AD/ M365 Tenant
Requirement of having MFA on Azure AD accounts are top priority at the moment and basically it has become a basic requirement. There are couple of ways to enable MFA on to user accounts by default. This can make sure […]
Azure AD Passwordless Authentication with Yubico FIDO2 key
Lately I got the opportunity to test the latest Identity Authentication method with Azure AD. None other than the Passwordless Authentication. I will post few related articles on FIDO2 and what it does rather than re-explaining what has already well […]
Effective use of Azure AD Administrative Units [Azure AD AUs]
I look at the Azure AD portal with curiosity to see what are the new features and then want to play around with them to better understand it’s usage. This is not a latest feature, but it’s out of the […]
Azure AD User Automation For Better Identity And Access Management
Why automate such a workload? Few reasons though Better Identity and access management Not having to update too many locations for these type of requestsMeet demands/ less stress on the frontline IT This is the age of automation and everyone […]
Azure AD Connect Cloud Provisioning. The new feature that may come in handy!
Microsoft have finally answered the prayers of the IT admins! Long story short, gone of the days where the IT admins had to make sure 2 AD forests can see each other and the ports are opened, before it adds […]
Cool and a Powerful feature to stop bulk accidental/ intentional deletion exports in an Azure AD Hybrid Environment
This is a hidden gem for Azure AD Sync connect configurations and I was looking for a feature like this for sometime now. Noticed this was available while trying to perform a migration of the tool to anew server and […]
How to federate Google (Gmail) accounts with Azure AD to access resources without a Microsoft account
My DIY project for this weekend is to try and implement a method to set Google as an identity provider for Azure AD resource access requirements. If someone can access apps or services on a different platform without having to […]
Azure AD Hidden Gems. Azure AD Temporary Access Pass
Temporary Access Pass or TAP, is a cool Azure AD feature which is still in Preview, but I see huge wins if Microsoft put this in to general availability so that the IT admins can provide uninterupted security over user […]
Azure AD Break Glass Account: How to monitor sign ins, and why do you need one?
With the growing threats around the world everyday, bad actors are targeting Microsoft 365 ecosystem like never before. Attacks are taking place everyday and if and when they have breached in, their end goal is to go for the “keys […]
Get new content delivered directly to your inbox.
Shehan Perera [techBlog] 