Azure AD Hidden Gems. Azure AD Temporary Access Pass

Temporary Access Pass or TAP, is a cool Azure AD feature which is still in Preview, but I see huge wins if Microsoft put this in to general availability so that the IT admins can provide uninterupted security over user accounts. In real life, users may forget to bring the mobile phone to office or … Continue reading Azure AD Hidden Gems. Azure AD Temporary Access Pass

My blog is now among the top 100 Azure blogs

My blog https://shehanperera.com was selected to be among the top 100 Azure blogs. This is a great honor and a motivational boost to keep doing what I’m doing and share my knowledge about the technology. I would like to thank FeedSpot for the consideration. Please check https://blog.feedspot.com/microsoft_azure_blogs/ for the listed blogs. Thank you and Keep … Continue reading My blog is now among the top 100 Azure blogs

Another Reason Why The AVD Session Hosts Are Failing To Load FSLogix User Profiles

Azure Files plays a big role in the Azure Virtual Desktop depolyments and for FSLogix to work in the intended way, the storage account needs to be joined to the domain. It can be either extending the on-premises domain to Azure by setting up a domain controller in the respective region or by setting up … Continue reading Another Reason Why The AVD Session Hosts Are Failing To Load FSLogix User Profiles

FIX: Windows 2019 CIS Benchmark Image Stopping the Azure VM Becoming the NTP Server After Transferring the PDC Emulator

In a Windows Domain environment the time is always working in a hierarchical manner. Server that holds the PDC emulator role holds the NTP Server and the other DCs will sync time from it and the members will sync time from those domain controllers. At times you have to change the FSMO Roles to a … Continue reading FIX: Windows 2019 CIS Benchmark Image Stopping the Azure VM Becoming the NTP Server After Transferring the PDC Emulator

How to Assign Admin Roles to Azure AD Groups with Access Reviews and Just in Time Access?

As of July 31 2021, this feature in Generally Available and was notified in the M365 Admin Center with the message MC274516 This approach is how you assign roles to Azure AD Groups along with the Privileged Identity Management features Just in Time access and Access Reviews options. Previous setup If you need to assign … Continue reading How to Assign Admin Roles to Azure AD Groups with Access Reviews and Just in Time Access?

So I created My 1st Power Automate Flow To Send Personalized Reminders To Teams

First of all I must say that I'm not a hardcore developer. If an expert see this, I'm sure they will find many points that needs improvement. You are welcome to comment and point out any issues in this or any improvements.Still a Power Platform novice and a citizen developer 🙂 And I'm sure there … Continue reading So I created My 1st Power Automate Flow To Send Personalized Reminders To Teams

How to analyze Conditional Access Policies with ‘Report Only’ Mode?

Conditional Access Polices can be setup in 3 main modes. On/ Off/ Report Only. On and Off modes are self explanatory where "Report Only" mode needs additional work. This post will go in detail on how to use the Report Only mode before you actually switch to ON. Read more about Conditional Access Policies https://shehanperera.com/2022/05/03/aad-cap101/Continue reading How to analyze Conditional Access Policies with ‘Report Only’ Mode?

Why Azure AD Continues Access Evaluation is Important?

Continues Access Evaluation or CAE is still in preview, but it has proven to refresh the near-real time refresh for Conditional Access Policies. Ideally this is a very helpful feature in the world of Identity and Access Management, because there are frequent attacks happening and the IdAM Admins need to take action quickly. Some actions … Continue reading Why Azure AD Continues Access Evaluation is Important?

Azure Automate Hybrid Worker Groups to Automate On-Premises Workloads

While Azure Automate can run PowerShell and Python scripts to make the cloud workloads to automate I like to focus on the PowerShell side of things. With PowerShell, you have the ability to connect to connect to modules like Exchange Online, MSOL, Azure AD, Az Storage and etc. Similar to that you can use the … Continue reading Azure Automate Hybrid Worker Groups to Automate On-Premises Workloads

Automate Cross Tenant Resource Access With Azure AD Entitlement Management

With the Azure AD Identity Governance feature "Entitle Management" it is easier to automate the access requests, set expiry dates, justify why a user needs access and get the load out of the IT admins. Azure B2B collaboration is a hot topic these days and the end result should be stresses access from the end … Continue reading Automate Cross Tenant Resource Access With Azure AD Entitlement Management

3 Ways to Enforce Azure AD MFA Registration in Azure AD/ M365 Tenant

Requirement of having MFA on Azure AD accounts are top priority at the moment and basically it has become a basic requirement. There are couple of ways to enable MFA on to user accounts by default. This can make sure all users are protected without having t o run periodic reports etc. Reason for collation … Continue reading 3 Ways to Enforce Azure AD MFA Registration in Azure AD/ M365 Tenant

Edge Browser Apps – A simple solution for managing multiple Outlook accounts for Teams meetings and multiple Teams sessions!

With the current upraise of Teams usage for collaboration meetings have been simplified and gone up to the next level of features. However, Microsoft still haven't addressed the use case where users having multiple Mailboxes in Outlook added with delegation permissions (Shared mailboxes or User mailboxes) and to use the specific account's Teams features when … Continue reading Edge Browser Apps – A simple solution for managing multiple Outlook accounts for Teams meetings and multiple Teams sessions!