Sander Rozemuller | All about Automation, Monitoring for Identity, AVD and Intune

Zero Trust Common Identity and Device Access Protection

Sander Rozemuller
Date : March 14, 2023
Categories : Security ,Entra ID ,Zero trust
Tags : Automation ,Entra ID ,Graph API ,Zero to zero trust ,Zero trust level 1

This is the 3rd step in the series Zero to Zero Trust in an automated way. In the previous steps, we configured an emergency account and protected the account with conditional access policies. The conditional access policies control the log-in process. In this step, we configure access policies for other users and devices.

Protect Privileged Accounts the Zero Trust Way Automated

Sander Rozemuller
Date : March 5, 2023
Categories : Security ,Entra ID ,Zero trust
Tags : Automation ,Entra ID ,Graph API ,Zero to zero trust

Identities are the key to environments and must be configured as securely as possible. To achieve this goal, conditional access policies are indispensable. In this blog post, I show how to secure privileged accounts that need more attention than MFA only. This post shows how to configure Zero Trust conditional access policies in an automated way.
This is the next step in our Zero to Zero Trust journey.

Configure Break Glass Accounts Infrastructure Automated

Sander Rozemuller
Date : February 13, 2023
Categories : Security ,Entra ID ,Zero trust
Tags : Automation ,Entra ID ,Graph API ,Zero to zero trust ,Zero trust level 1

Nowadays a good cloud environment has strict security policies. Well-known policies are conditional access policies. Policies that require a compliant device before login for example or forcing MFA. Configuring conditional access is good but there is always a risk of lockout yourself. To not lock yourself out, you must create an emergency account.

Zero to Zero Trust Automation Index

Sander Rozemuller
Date : February 11, 2023
Categories : Security ,Zero trust
Tags : Zero to zero trust ,Entra ID ,Endpoint

Welcome to the Zero to Zero Trust series automated and to this automation index. In this series, I will show the process from a zero security configuration to Zero Trust in the Microsoft public cloud. The series passes all the important items and show how to configure the components automated if applicable.

Get Intune Device Management Scripts Content using Graph

Sander Rozemuller
Date : February 9, 2023
Categories : Microsoft intune ,Device management ,Security
Tags : Scripts ,Graph API

Device management scripts in Intune are custom scripts that can run on Windows 10 and higher clients and MacOS. The ability to run scripts on local devices gives you an alternative to configuring devices with settings that are not available under the configuration policies or in the apps part of Intune.

Delete AAD and Intune devices based on CSV and Graph API

Sander Rozemuller
Date : January 28, 2023
Categories : Identity ,Intune
Tags : Graph API ,Power shell ,Azure ad ,Devices

The power of community is to collaborate and help others achieve goals. In this case, I got a question from a good community friend to help write a script that removes over 6000 devices from Intune and Azure Active Directory. The base is a CSV file filled with Intune devices IDs.