As announced in early November 2020, support for old versions of TLS (TLS 1.0 and TLS 1.1) and ciphers (3DES cipher suite) are going to be deprecated and no longer supported starting June 30, 2021. You have to ensure your on-premises systems interacting with Azure AD – such as Azure AD Connect, Azure AD Application […]
As you may already know, you can use Azure AD Conditional Access to secure access to your applications. Well, good news as you can now also use Conditional Access with your Azure AD B2C (Business to Consumer) tenant to help you address user risks when accessing your B2C applications. While you may already know the
Azure AD – You can now use Conditional Access with your Azure AD B2C tenant Read More »
As you know, you can configure Named Location on Azure AD for use with Conditional Access either based on public IP address or country. Well, when using the country based location, the real location is not always as accurate as it should. Good news, you can now use GPS coordinates to gain better accuracy when
Azure AD – You can now use GPS coordinates for better accuracy on Named Location Read More »
Another step to a passwordless world. As you know, you can signing with no password using a FIDO key or Windows Hello. Well, you can now also use the one time code from your Microsoft Authenticator app. First thing you need to enable this new feature by logging on your Azure AD portal (https://aad.portal.azure.com/) and
As you know, end-users can access the Microsoft My Sign-Ins website (https://mysignins.microsoft.com/) to manage their security information (register MFA authentication method, set the default MFA method…). Well, this can now also be done using the Microsoft Authenticator mobile application. From the Authenticator application, access your account and the select Update security info Then you are
As you know Azure Active Directory Connect (AAD Connect) is used to synchronize your on-premises Active Directory objects (users, groups, devices) to Azure AD with the option to synchronize the user’s hash password (aka password sync, aka password hash sync, aka PHS). Well, with this new version – 1.6.2.4 – available for download here https://go.microsoft.com/fwlink/?LinkId=615771
As you know, Azure Active Directory provides a large list of administration roles to allow delegating administration tasks and reduce the need to grant the more powerful global administrator role. Well, 2 new roles are now available: Authentication policy administrator to delegate the permissions to manage the authentication methods enabled on Azure AD and associated
As you know, you can register applications on Azure AD when your application need to have access to data hosted on Azure AD (groups membership, users profile details…). Well, you can now recover a deleted registered application up to 30 days after deletion. This can be useful when an Azure AD administrator and/or application administrator/developer
Azure AD – You can now recover a deleted registered application (preview) Read More »
As you know, for the past few years, Microsoft has been working to remove the need of passwords to access Microsoft Cloud services through Azure Active Directory – also known as password less. Well, there was still a problem as an end user needed to know his password at some point. This now answered with
Azure AD – Temporary Access Pass for password less user is now in preview Read More »
Good news, you don’t need to be a global administrator to manage Multi Factor Authentication (MFA) or authentication methods. A new role called Authentication Policy Admin allows you to delegate authentication methods management, covering MFA or password protection policies. NOTE the legacy MFA setting is not available for the authentication policy admin role Below is
Azure AD – New administration roles for managing domain name and authentication methods Read More »
