January 2025

Active Directory Hardening: Risks, Mitigation, and Best Practices

Leave a Comment / Active Directory Blog, Active Directory, Security Security / Thomas Garrity

Microsoft Active Directory (AD) serves many purposes. The most important role it provides is authentication. To make authentication painless, Windows (and non-Windows) systems use AD to authenticate user accounts and computer accounts. Partner with Microsoft experts you can trust If it’s time to take that first step toward leveling up your organization’s security, get in […]

Active Directory Hardening: Risks, Mitigation, and Best Practices Read More »

Use Privileged Access Workstations to Increase Security

Leave a Comment / Security / Burke Matsuo

All organizations use privileged accounts to manage their environments. In many cases, administration is performed from productivity workstations, which are vulnerable to a substantial number of attack vectors. A key component in securing privileged access is performing privileged administration from secure workstations, also known as privileged access workstations (PAWs). PAWs are purpose-built, hardened computers that

Use Privileged Access Workstations to Increase Security Read More »

Setting Up Microsoft Intune Cloud PKI

Leave a Comment / Security / Tony La Grassa

Many organizations are interested in leveraging the benefits and security that come with a public key infrastructure (PKI). While internal PKIs are incredibly powerful and are often a de facto requirement for many security solutions, they can create a complex or difficult-to-understand threat landscape. When a new PKI is created, it must be trusted. With

Setting Up Microsoft Intune Cloud PKI Read More »

Platform SSO: Windows Hello for macOS

Leave a Comment / Identity Management / Hidra Antar

First announced at WWDC in 2022, Platform SSO (PSSO) is now available for Microsoft Entra ID tenants. It can be configured on any supported macOS MDM, such as Microsoft Intune or Jamf, to allow users to sync local credentials with an identity provider. PSSO works remarkably well and deserves serious consideration. Windows Hello for Business

Platform SSO: Windows Hello for macOS Read More »

Building a Custom Claims Provider in Entra ID: A Deep Dive

Leave a Comment / Identity Management Blog, Identity Management, Security Security / Andy Schneider

Microsoft Entra ID, formerly known as Azure Active Directory, is Microsoft’s cloud-based identity and access management (IAM) service. It enables organizations to manage user identities and control access to applications, devices, and data. Entra ID generates tokens that are used for authentication and authorization for enterprise applications. Claims are a set of key value pairs

Building a Custom Claims Provider in Entra ID: A Deep Dive Read More »