Showing items from Security

Protect Privileged Accounts the Zero Trust Way Automated

Sander Rozemuller
Date : March 5, 2023
Categories : Security ,Entra ID ,Zero trust
Tags : Automation ,Entra ID ,Graph API ,Zero to zero trust

Identities are the key to environments and must be configured as securely as possible. To achieve this goal, conditional access policies are indispensable. In this blog post, I show how to secure privileged accounts that need more attention than MFA only. This post shows how to configure Zero Trust conditional access policies in an automated way.
This is the next step in our Zero to Zero Trust journey.

Configure Break Glass Accounts Infrastructure Automated

Sander Rozemuller
Date : February 13, 2023
Categories : Security ,Entra ID ,Zero trust
Tags : Automation ,Entra ID ,Graph API ,Zero to zero trust ,Zero trust level 1

Nowadays a good cloud environment has strict security policies. Well-known policies are conditional access policies. Policies that require a compliant device before login for example or forcing MFA. Configuring conditional access is good but there is always a risk of lockout yourself. To not lock yourself out, you must create an emergency account.

Zero to Zero Trust Automation Index

Sander Rozemuller
Date : February 11, 2023
Categories : Security ,Zero trust
Tags : Zero to zero trust ,Entra ID ,Endpoint

Welcome to the Zero to Zero Trust series automated and to this automation index. In this series, I will show the process from a zero security configuration to Zero Trust in the Microsoft public cloud. The series passes all the important items and show how to configure the components automated if applicable.

Get Intune Device Management Scripts Content using Graph

Sander Rozemuller
Date : February 9, 2023
Categories : Microsoft intune ,Device management ,Security
Tags : Scripts ,Graph API

Device management scripts in Intune are custom scripts that can run on Windows 10 and higher clients and MacOS. The ability to run scripts on local devices gives you an alternative to configuring devices with settings that are not available under the configuration policies or in the apps part of Intune.

The Endpoint Security Train - Introduction

Sander Rozemuller
Date : November 20, 2022
Categories : Endpoint ,Security
Tags : Endpoint ,Zero trust ,The endpoint security train ,Microsoft intune ,Azure ,Entra ID

The IT landscape is changing. Private becomes public, local resources are moving to the public cloud. More and more workloads return to the local endpoint. Cloud endpoints (AVD, W365) are mostly used to run legacy software. With all those movements, it could be challenging to keep the herd in the pasture. Devices are everywhere and what about security?

Disable user tenant creation

Sander Rozemuller
Date : November 17, 2022
Categories : Entra ID ,Security
Tags : Azure ,Entra ID

It looks like Microsoft has added a new option that allows users to create tenants. Some people have seen the Tenant Creation option in the regular Azure portal but was removed fast. For now, the option is still available in the Preview Azure Portal (https://preview.portal.azure.com/)