As you may already know, you can create dynamic membership groups in Azure Active Directory (AAD) for quite some time now. Well, the dynamic membership rules configuration blade has been refreshed and looks better and easier to use; you can now see at the same time the defined rules AND the detailed expression of these […]
As you already know, you can connect to your Azure virtual networks (VNets) from your devices using either Site to Site (S2S) VPN and/or Point to Site (P2S) VPN. The Point to Site VPN connection use to require self-signed certificate for the client to connect to Azure. Well, good news, you can now use your
Azure – You can now use Azure AD authentication support for point to site VPN Read More »
It has been in preview for the past few months, it is now GA (generally available): you can now invite external users (Azure AD B2B – Business to Business) using Google ID as identity provider, supporting @gmail.com and @googlemail.com email address domains. Before enabling support for Google ID, you first need to create a Google
Azure AD – You now use Google ID with Azure B2B Read More »
A new version of Azure AD Connect (AAD Connect) version 1.4.32.0 is now available. It contains a fix for the known issue with Self Service Password Reset (SSPR) which was fixed with an interim version only available for auto upgrade. This version introduces an internal schema change which will require you to use MSOnline PowerShell
Azure – New Azure AD Connect version (1.4.32.0) is now available Read More »
As you may already know, applications integrated with Azure AD may required administrators consent to allow them access your Azure AD data (for example read user profile). When a user tries to access an application with requires admin consent but has not been approved it, it starts to be a long support process to get
Azure AD – You can now configure Admin Consent workflow Read More »
As just announced at the Microsoft Ignite 2019 Conference, Azure Multi Factor Authentication (Azure MFA) will now be enabled by default for all new Azure AD (and Office 365 or Dynamics as they rely on Azure AD) tenant and will be also free for existing customers with the Microsoft Authenticator app (available on Android https://play.google.com/store/apps/details?id=com.azure.authenticator
Azure – Azure MFA will now be enabled by default and free Read More »
As you already know, Azure AD Conditional Access policies are one important component helping you securing access to your resources. Implementing Conditional Access policies is sometimes a little bit complicated as it may impact the ability of your users to access those resources. Well, good news, you can now enable a Report Only option when
Azure AD – You can now ‘live try’ Conditional Access Read More »
When you are moving to cloud services (in this case Office 365 and/or Azure Active Directory/Azure), it is important that the authentication process is working seamlessly when you are moving away from federated authentication services (AD FS, Okta…) to cloud authentication. This means you need to be able to test and validate the process. Until
Azure AD Connect / ADFS – You can now stage your migration from AD FS (preview) Read More »
DISCLAIMER it needs to be carefully review before implementing as it will enforce the security configuration. Microsoft has release an option to simply and automatically enabled a default security configuration on Azure AD; this includes: Enforcement of MFA for privileged accounts – all administrator types account), All users are required to be registered for MFA
Azure AD – You can now enable default security settings for Azure AD Read More »
This is a capability which has been there for quite long time for Microsoft Account (https://account.live.com/Activity?mkt=en-US&refd=account.microsoft.com&refp=security&fref=security.cards.review-activity&uaid=9e64b34b59604f468d1cb65aa1d973b9), the ability to review sign-in activities. Well, this is now available for corporate account (Azure AD, Office 365). To let you end-users review their sign-in activities, let them go to https://mysignins.microsoft.com/ – or https://myprofile.microsoft.com and check the My Sign-ins
Azure AD – Users can now review their sign-in activities by themselves Read More »
