You may be well aware about the Azure Active Directory (Azure AD or AAD) Conditional Access features, and you should already have implemented some conditional access rules to improve your security posture. That said, when you have to setup a conditional access rule for Office 365 services access (Exchange Online, Teams, PowerApps…) it may be […]
Azure AD – A new conditional access App for Office 365 suite Read More »
The following issue occurred for one of my customers after enabling MFA for all users. The directory synchronization stopped working. The above situation may not occur often as usually you are excluding trusted locations (aka your corporate network public endpoints) from applying conditional policies – especially when enabling MFA – and your Azure AD Connect
In the way to limit the need and use of the global administrator role, 3 new administration roles have been made available: Groups administrator to delegate groups (Azure AD security groups, Office 365 Groups, Teams or Yammer) management, covering naming convention, expiration policy or even AAD security group restoration Office apps administrator allows you delegating
Azure AD / Office 365 – 3 new administration roles available Read More »
As there is more use of Azure AD application integration (either Enterprise Applications or Azure AD App Proxy), it is becoming more complicated for end-users to find their most important applications for their work. Well, good news, Azure AD Administrators can now create a ‘workspace’ grouping all related applications for their job or role. First
Azure AD – You can now customize the My Apps portal Read More »
As you already know Azure Active Directory Connect (AAD Connect) is the easiest and quickest way to provision identities in Azure AD, especially for large organization, while providing simple authentication method to cloud services (password hash sync, Seamless SSO…). That being said, you may find yourself in position you have to quickly provide cloud identities
As you may already know, you can create dynamic membership groups in Azure Active Directory (AAD) for quite some time now. Well, the dynamic membership rules configuration blade has been refreshed and looks better and easier to use; you can now see at the same time the defined rules AND the detailed expression of these
As you already know, you can connect to your Azure virtual networks (VNets) from your devices using either Site to Site (S2S) VPN and/or Point to Site (P2S) VPN. The Point to Site VPN connection use to require self-signed certificate for the client to connect to Azure. Well, good news, you can now use your
Azure – You can now use Azure AD authentication support for point to site VPN Read More »
It has been in preview for the past few months, it is now GA (generally available): you can now invite external users (Azure AD B2B – Business to Business) using Google ID as identity provider, supporting @gmail.com and @googlemail.com email address domains. Before enabling support for Google ID, you first need to create a Google
Azure AD – You now use Google ID with Azure B2B Read More »
A new version of Azure AD Connect (AAD Connect) version 1.4.32.0 is now available. It contains a fix for the known issue with Self Service Password Reset (SSPR) which was fixed with an interim version only available for auto upgrade. This version introduces an internal schema change which will require you to use MSOnline PowerShell
Azure – New Azure AD Connect version (1.4.32.0) is now available Read More »
As you may already know, applications integrated with Azure AD may required administrators consent to allow them access your Azure AD data (for example read user profile). When a user tries to access an application with requires admin consent but has not been approved it, it starts to be a long support process to get
Azure AD – You can now configure Admin Consent workflow Read More »
