HOWTO: Delete your Windows Hello for Business Registrations

Windows Hello for Business is awesome technology, that allows for multi-factor authenticated sign-in on Windows 10 devices. When you’ve got it working the way you want it to work, it’ll work flawlessly. But, there are situation where you can’t get it to work the way you want, it stops working the way you want, or … Continue reading "HOWTO: Delete your Windows Hello for Business Registrations"

TODO: Upgrade from ADAL to MSAL

Last week, Microsoft has announced the deprecation of the Azure Active Directory Authentication Library (ADAL). Going forward, the Microsoft Authentication Library (MSAL) is the supported way to provide authentication with Active Directory and Azure AD in applications.                                                                     What will happen? Let’s look at the timeline shared by Microsoft: For the next two years, applications … Continue reading "TODO: Upgrade from ADAL to MSAL"

Calculating your Azure Log Analytics bill when you stream your Azure AD logs to it

Azure Log Analytics is a superb product to store and query logs. When an organization streams the sign-in logs and audit logs from Azure Active Directory to an Azure Log Analytics workspace, however, the Azure Log Analytics bill might rake up. In the blogpost I’ll provide a way to effectively calculate the Azure Log Analytics … Continue reading "Calculating your Azure Log Analytics bill when you stream your Azure AD logs to it"

HOWTO: Set an alert to notify when an Azure AD emergency access account is used

Azure Active Directory is Microsoft's Identity Management-as-a-Service solution, offering seamless access, easy collaboration, efficiency in IT processes and improved security and compliance. For administrative access at al times and under all circumstances, Microsoft recommends to create at least one emergency access account in Azure Active Directory when an organization has Azure AD Premium P1 and/or … Continue reading "HOWTO: Set an alert to notify when an Azure AD emergency access account is used"

TODO: Move from the ‘Allow users to remember multi-factor authentication on devices they trust’ option to Conditional Access

Last month, I made the case to move from per-user MFA to Conditional Access to leave behind the remnants of the PhoneFactor infrastructure, presented as old pages linked to from the Azure Portal. Today I want to talk about the ‘Allow users to remember multi-factor authentication on devices they trust’ option, that allows administrator to … Continue reading "TODO: Move from the ‘Allow users to remember multi-factor authentication on devices they trust’ option to Conditional Access"

Veeam Backup for Office 365 v4c build 4.0.1.519 offers support for disabled legacy protocols

Six weeks ago, we looked at how Veeam Backup for Office 365 works in tenants with multi-factor authentication required for admin roles. With Security Defaults being the norm in newly created Azure AD tenants and their respective Office 365 tenants, it’s a good time to look at how Veeam Backup for Office 365 can work … Continue reading "Veeam Backup for Office 365 v4c build 4.0.1.519 offers support for disabled legacy protocols"

What’s New in Azure Active Directory in May 2020

Azure Active Directory is Microsoft's Identity Management-as-a-Service solution, offering seamless access, easy collaboration, efficiency in IT processes and improved security and compliance. In its Release Notes for Azure Active Directory, Microsoft communicated the following planned, new and changed functionality for Azure Active Directory for May 2020, on top of the announcements made at Build 2020: … Continue reading "What’s New in Azure Active Directory in May 2020"

A Recap of Identity-related Announcements from Microsoft Build 2020

Microsoft organized Microsoft Build 2020 as a free digital event between Tuesday May 19th 8AM Pacific Time and Thursday May 21st 8 AM Pacific Time. Microsoft Build is Microsoft’s annual conference event, aimed at software engineers and web developers using Windows, Microsoft Azure and other Microsoft technologies. First held in 2011, it serves as a … Continue reading "A Recap of Identity-related Announcements from Microsoft Build 2020"

HOWTO: Secure VMware Horizon with Azure MFA through its NPS Extension

This week, one of my customers is switching to Azure multi-factor authentication as their only multi-factor authentication solution for their employees. As the organization leverages VMware Horizon, this implementation needs to be switched to Azure MFA as well. Here’s how we secured their VMware Horizon implementation with Azure MFA through the Azure MFA NPS Extension: … Continue reading "HOWTO: Secure VMware Horizon with Azure MFA through its NPS Extension"

Identity-related sessions at Microsoft Build 2020

Microsoft organizes Microsoft Build 2020 as a free digital event between Tuesday May 19th 8AM Pacific Time and Thursday May 21st 8 AM Pacific Time. Microsoft Build is Microsoft’s annual conference event, aimed at software engineers and web developers using Windows, Microsoft Azure and other Microsoft technologies. First held in 2011, it serves as a … Continue reading "Identity-related sessions at Microsoft Build 2020"