SCCM – Improvements for Azure AD Joined devices managed by SCCM

You may already be aware that the introduction of Azure Active Directory (Azure AD) integration with System Center Configuration Manager (SCCM) starts reducing the certificate requirements. Well, this integration has been updated (with the current release – build 1806 – this is still a preview) to allow Azure AD Joined devices managed by SCCM to communicate using HTTP with the SCCM environment through the cloud management gateway To implement this…

Read More

Azure – Azure Management Groups is now available

A new capability feature has been released on Azure: Azure Management Groups. This new capability will help you managing and organizing your Azure subscriptions while ensuring compliance and governance is properly applied. By using Azure Management Groups you can now reduce the workloads and risks associated with user assignments; like granting access to multiple subscriptions to a user or ensuring users have appropriate permissions while reducing the complexity of the…

Read More

Intune – Third party certification authorities is now supported for SCEP

One of the important security management responsibilities of Microsoft Intune is the ability to issue certificates to devices using the Simple Certificate Enrollment Protocol (SCEP). Starting today, Intune now supports third party certification authorities for SCEP – starting with Entrust as first CA. Support of Active Directory Certificate Services is still supported of course Below an high level diagram explaining how SCEP works with Intune (courtesy Microsoft) To setup the…

Read More

Azure – An updated interface for Azure AD Roles management

The Azure Active Directory Roles configuration blade has been updated to provide more details and management option for Azure AD Roles. Connect to your Azure administration portal (https://portal.azure.com) or Azure AD administration portal (https://aad.portal.azure.com) and reach out your Azure Active Directory blade or Then reach out the Roles and administrators blade At first sight it does not seems to had some changes but it has been updated; first, if you…

Read More

Azure / Office 365 – You can now use your Microsoft Authenticator mobile app for SSPR (preview)

The Self Service Password Reset, available with Azure AD and Office 365, has been updated to let your end-user use the Microsoft Authenticator mobile app when using the Self Service Password Reset (SSPR). First you need to enable this new capability from your Azure AD portal (https://aad.portal.azure.com/) or Azure portal (https://portal.azure.com) and reach the Password reset configuration blade Then go to the Authentication methods blade and enable the Mobile app…

Read More

Azure – New version of Azure AD Connect available for autoupgrade

If you have configured your Azure AD Connect (the directory synchronization tool for Azure AD and Office 365), a new version (1.1.880.0) has been made available. This version solves the issue with Azure AD Connect Health agent running 100% CPU – which was (incorrectly?) reported to be related to the Framework update. Also part of this update support for Windows Server 2019 Essentials and GA (general availability) of the integration…

Read More

Azure – Azure AD Conditional Access sign-ins reports in preview

You may already be aware of this security feature called Azure AD Conditional Access helping you protecting and securing access to your resources published through Azure AD. A new capability to this feature has been added (in preview) to provide a better reporting and troubleshooting capabilities: Azure AD Conditional Access Sign-Ins Report To start using it, logon to your Azure AD administration portal – either from the Azure portal (https://portal.azure.com)…

Read More

Azure AD / Office 365 – Integration with LinkedIn is finally here

It has been announced some time ago already, but now the integration is finally here. You can now enable the LinkedIn integration with your Office 365 (Azure AD) tenant. NOTE the integration is turned off by default. To enable the feature, you need to logon to your Azure portal (https://portal.azure.com/) or your Azure AD administration portal (https://aad.portal.azure.com) Then go to your Azure AD configuration blade Access the User settings configuration…

Read More

Windows 10 – Error 0x80180014 when joining Windows 10 to Azure AD

I just got an interesting error when trying to join a Windows 10 1803 to Azure AD; I was continuously getting the error ‘0x80180014’ when trying to join the device to Azure AD. The interesting thing was this device has been already Azure AD Joined but has been reset, with all reference in Azure AD or Intune removed. Nonetheless, each time I tried to join again I was getting this…

Read More

Azure – New data migration option to Azure: Azure Data Box

As for Exchange Online migration, you now have the option to ship encrypted hard-drives to Microsoft datacentres when you migrate big amount of data to Azure workloads. This is a similar option than the one we already have to migrate Exchange mailboxes to Exchange Online. The option, called Azure Data Box, has been introduced late last year already but now it has been improved to provide more flexibility in term…

Read More

Azure – New networking feature in preview: Azure Virtual WAN

A new Azure networking feature is now available in preview (you need to register first, see below): Azure Virtual WAN. Azure Virtual WAN allows you to optimize and automate branch-to-branch connectivity with Azure. Virtual WAN offers the following advantages: Virtual WAN and virtual hubs: You can create a virtual WAN and then deploy virtual hubs in any Azure public region. This allows your hubs to be close to your branch…

Read More

Azure – Ever wanted to learn Azure Stack?

If you ever wanted to learn about Azure Stack but don’t have the resources or infrastructure to do so by yourself? Then, this is for you An online training is available to learn Azure Stack at https://openedx.microsoft.com/courses/course-v1:Microsoft+INF240x+2018_T2 You just need to have a registered account with Microsoft Learning; if you don’t have one yet, register here https://openedx.microsoft.com/register

Read More

Azure – A new security feature available in preview in Azure: Azure Firewall

Microsoft has introduced a new security feature in Azure, in preview, called Azure Firewall. Azure Firewall is going to help you protect your Azure vNET. Like with other on-premises firewall solutions, Azure Firewall supports: FQDN filtering Traffic filtering rules SNAT support Integration with Azure Monitor logging (diagram courtesy Microsoft)   As this is a preview, there is still few things: If a network security group (NSG) is applied on the…

Read More

Azure / Sql – New offers and capabilities for SQL 2008 Server

As you may know (otherwise, this is it, you know ), SQL Server 2008/2008 R2 is going out of support in July 2019 (https://support.microsoft.com/en-us/lifecycle/search/14917), while Windows Server 2008 is going to be out of support in January 2020 (https://support.microsoft.com/en-us/lifecycle/search/12925). To help you migrate your workloads still running on these systems, Microsoft is extending the security updates support for 3 years when running these systems on Microsoft Azure. That said, it…

Read More