Showing items from Entra ID

Automated Device Group Management for Microsoft Intune Update Rings Using PowerShell

Sander Rozemuller
Date : July 10, 2024
Categories : Microsoft intune ,Entra ID
Tags : Users ,Devices ,Update rings ,Microsoft graph

Testing settings and updates in Microsoft Intune is a good idea. Many Intune administrators use a test group and Deployment Rings for this. In the case of Windows Updates, administrators configure an update ring and assign a group to it. The group is filled with devices (I call it a device group). In this blog post, I will show you how to dynamically manage a device group in an automated way for your Intune update rings based on a user group. Let’s call it dynamic device group management.

Zero Trust Common Identity and Device Access Protection

Sander Rozemuller
Date : March 14, 2023
Categories : Security ,Entra ID ,Zero trust
Tags : Automation ,Entra ID ,Graph API ,Zero to zero trust ,Zero trust level 1

This is the 3rd step in the series Zero to Zero Trust in an automated way. In the previous steps, we configured an emergency account and protected the account with conditional access policies. The conditional access policies control the log-in process. In this step, we configure access policies for other users and devices.

Protect Privileged Accounts the Zero Trust Way Automated

Sander Rozemuller
Date : March 5, 2023
Categories : Security ,Entra ID ,Zero trust
Tags : Automation ,Entra ID ,Graph API ,Zero to zero trust

Identities are the key to environments and must be configured as securely as possible. To achieve this goal, conditional access policies are indispensable. In this blog post, I show how to secure privileged accounts that need more attention than MFA only. This post shows how to configure Zero Trust conditional access policies in an automated way.
This is the next step in our Zero to Zero Trust journey.

Configure Break Glass Accounts Infrastructure Automated

Sander Rozemuller
Date : February 13, 2023
Categories : Security ,Entra ID ,Zero trust
Tags : Automation ,Entra ID ,Graph API ,Zero to zero trust ,Zero trust level 1

Nowadays a good cloud environment has strict security policies. Well-known policies are conditional access policies. Policies that require a compliant device before login for example or forcing MFA. Configuring conditional access is good but there is always a risk of lockout yourself. To not lock yourself out, you must create an emergency account.

Automate user sign-in experience with company branding

Sander Rozemuller
Date : January 10, 2023
Categories : Entra ID ,Entra ID
Tags : Sign in ,Graph API ,Company branding

Recently Microsoft redesigned the company branding functionality. That means you have more flexibility in the main layout, full-screen background image for example. But also the ability to change the header, footer and even link relating to self-service password reset, privacy & cookies or Terms of Use. Also, there is an option to upload a CSS style sheet to change colors, buttons, and more.

Disable user tenant creation

Sander Rozemuller
Date : November 17, 2022
Categories : Entra ID ,Security
Tags : Azure ,Entra ID

It looks like Microsoft has added a new option that allows users to create tenants. Some people have seen the Tenant Creation option in the regular Azure portal but was removed fast. For now, the option is still available in the Preview Azure Portal (https://preview.portal.azure.com/)