Azure servicesMicrosoft Entra IDMicrosoft Technologies

Step-by-Step guide: Privileged access management in office 365

In any identity infrastructure attack, attackers are going after the "privileges". The more privileged account they own, the more damage they can do. There can be privileged accounts in a system that only used once a month to do a privileged task. In any IT system, we used to believe administrators are trustworthy people. Therefore, most of the time we do not really worry about what they…
Read more

Step-by-Step: Enabling MFA for Azure Administrative Portals via Microsoft Entra ID Conditional Access

Microsoft Entra Permissions Management – Part 01 – Azure Subscription Onboarding

Azure servicesMicrosoft Entra ID

Step-by-Step Guide to Restrict Azure AD Administration portal

In order to manage Azure AD, we use Azure Active Directory option in https://portal.azure.com. By default, any user under Azure AD can access this option event they do not have a Directory role. In my demo setup, I have a user called "Emily Braun". She doesn't have any Directory role assigned. Then I log in to Azure portal https://portal.azure.com as the user and then go to…
Read more

Step-by-Step: Enabling MFA for Azure Administrative Portals via Microsoft Entra ID Conditional Access

Microsoft Entra Permissions Management – Part 01 – Azure Subscription Onboarding