If you have an Azure AD P2 or Enterprise Mobility + Security E5 license, you are probably aware about the Identity Governance capabilities which allows you to control identity and access lifecycle at scale. One of these capabilities is Access Package which allows you to create packages of content (groups, Teams, SharePoint sites) and application …
Azure AD – You can now use automatic assignment with Access Package Read More »
As you may be aware, you can enable Azure AD Diagnostic Settings to send the logs to either an Azure Log Analytics, an Azure Storage Account, an Azure Event Hub or a partner solution to keep and manage Azure AD logs (sign in, audit, authentication logs) by configuring the AAD Diagnostic Settings. Well, I ended …
Azure AD / Azure – Subscriptions filter in AAD and Azure portal are not in sync Read More »
As you are probably aware, Azure AD is now supporting certificate based authentication (in preview – see https://t.co/b09Hn1AXum). Well, the certificate based authentication has been improved by providing the ability to use certificate to authenticate with Windows Logon and easier certificate root management. To use a certificate (using a Smart Card) during Windows Logon you …
Azure AD – Improvements in certificate based authentication Read More »
If you use Microsoft Cloud services – like Office 365 or Azure, then you are also using Azure AD to manage identity and access to these services and other integrated with them. With Azure AD, you probably already know that end-users have access to different ‘end-users portals’ to manage their own information, such as ‘My …
A new version (2.1.15.0) of the directory synchronization tool – Azure AD Connect – has been released. You need to urgently update your existing AAD Connect instance as this new version fixes a security vulnerability in the Azure AD Connect Admin agent. In addition of this security fix, few new capabilities have been added, such …
Azure AD – Update ASAP your Azure AD Connect instance Read More »
If you are working in an hybrid environment with Active Directory on-premises being synchronized to Azure AD using Azure AD Connect, you are already probably aware about the group write-back capability which allows you to synchronize back to Active Directory Office 365 groups. Well, this capability has been extended to allow you to also write-back …
Azure AD – You can now expand the groups write-back capabilities to more group types Read More »
As you are probably aware Microsoft has been removing basic authentication capabilities in Office 365 services, which includes connectivity using ‘legacy’ protocols like IMAP, POP or SMTP. While this removal is for the greater of good – basic authentication is not a secure way to authenticate as it can be easily hack and does not …
Exchange Online – Use OAuth to authenticate when using IMAP, POP or SMTP protocol Read More »
A new user overview blade has been made available in Azure AD. This new blade simpler and easier access to the user settings and properties. Please note this new blade can only be accessed from the Azure Active Directory\Users\All users blade; it is not available when accessing directly from the Users section When accessing the …
As you are already probably aware, Azure AD allows you to create users or devices group with dynamic membership. Well, the attributes available for creating a device dynamic group have been extended and now allow you to use: deviceManagementAppId: defines the MDM application ID in Azure AD. If you use Intune, the Azure App ID …
Azure AD – New device attributes are available for use for dynamic group membership Read More »
If you use Intune/Endpoint Configuration Manager to manage your devices, you know that the Company Portal application is a key components. The Company Portal application is used to deliver and let users install applications on their devices. If your device is managed with Intune/Endpoint Configuration Manager, the Company Portal is now showing the Azure AD …
Intune – The Company Portal on Windows shows Azure AD applications Read More »
