Security is a key point when moving / using a cloud service. Microsoft has made (and still making) lot of investment to ensure data and account security and help customers to get the most of it. A new step has just been done with the release in preview of Secure Score; a toolset integrated with […]
Office 365 – Secure Score is now in preview Read More »
With ADFS 4, you can easily enable device authentication as authentication method. This authentication method was already available in ADFS 3 but only as additional authentication method; with ADFS 4 this becomes also available as primary authentication method. Upgrade Active Directory Federation schema This step is required if already have deployed a previous version
ADFS 4 – Enable device authentication method Read More »
One of the improvements with ADFS 4 (on Windows Server 2016) is the integration of Azure MFA as multi factor authentication method as well as primary authentication method; you can still use the certificate based or the Azure MFA Server (see http://blog.hametbenoit.info/2014/08/18/azure-use-windows-azure-multi-factor-authentication-to-secure-your-on-premises-application-and-with-your-adfs/) for the multi factor methods. If you want to enable Azure MFA with
As you may know, a quick way to test your ADFS deployment is to access the idpinitiatedsignon sign page. As usual, I tried it after deploying my new ADFS 4.0 server and… got this error message The resource you are trying to access is not available. Contact your administrator for more information. And the
Windows Server 2016 – ADFS 4 idpinitiatedsignon is disabled by default Read More »
You may already know that ADFS 3.0 (on Windows Server 2012 R2) already supports certificate authentication BUT using a different communication port than 443 (in fact 49443). With ADFS 4.0 (on Windows Server 2016), the certificate authentication can now use the 443 communication port, making thing easier to implement multi factor authentication using user certificate.
Windows Server 2016 – ADFS 4.0 now support certificate authentication on port 443 Read More »
This procedure applies only for Windows 10 devices which have been configured as Azure AD Joined. From time to time, you may need to access advanced recovery options for your Windows 10 device but these options may failed to work because you are using BitLocker to encrypt your drive. You may already know the procedure
Windows 10 – BitLocker Recovery Key for Azure AD Joined devices Read More »
UPDATE: In general availability in Sept. 15 th Microsoft is providing a new security features set using Azure RMS called Azure Information Protection. The idea is to help securing and classifying your data; making things easier for end-user. Don’t forget one the advantages of Azure RMS is you can share RMS protected documents/emails with the
Azure – Azure Information Protection Public Preview Read More »
Microsoft has added a new service into Office 365 called Advanced Security Management. This new service allows administrators to setup alerts for various activities, from users to administrators activities, anomalous or suspicious behavior and define action to these issues, such as suspending user account. Activation To start using this new service, you need first to
Office 365 – Advanced Security Management Read More »
A new version of the Microsoft Authenticator is coming on August 15th. As you may know, there has been multiple and different apps to manage MFA (Multi Factor Authentication) from Microsoft: one for Microsoft Account and one for Microsoft Corporate Account (Azure AD, Office 365…) on August 15th, this will not be the case anymore;
Microsoft Authenticator – New version coming up on August 15th Read More »
If you are already using Microsoft Azure MFA with the on premises solution (Multi Factor Authentication Server) and want (or have already) to upgrade to the latest version (which is version 7.0.2 at the time of writing this post), you may experience the following error if you have integrated with ADFS (especially when you restart
Security – Error after upgrading Multi Factor Authentication Server to version 7 Read More »
