Identity and Access Archives

Network Time Protocol Configurations: A Deeper Dive

Tony LaGrassa January 19, 2023

In my previous blog post we reviewed why time synchronization is important, as well as proper time synchronization configuration of domain controllers (DCs) holding the

Active Directory Forest Recovery: Plan to Eliminate Downtime

Brian Britt November 8, 2022

Active Directory (AD) is still the predominant identity and management platform for tens of thousands of organizations worldwide. Larger organizations with hundreds to even thousands

How to Build a Tier 0 Windows Admin Center Instance

Thomas Garrity October 19, 2022

Are you tired of seeing the Windows Admin Center (WAC) prompt from Microsoft Windows Server Manager (as shown in Figure 1) and not knowing what

How to Implement Microsoft Azure Active Directory Password Protection for a More Secure Environment

Brian Britt September 28, 2022

Passwords have long been the de facto authentication mechanism for identities. Length and complexity plagued us as we struggled to produce an acceptable password that

How to Use the Microsoft Azure Portal to Disable Basic Authentication

Tony Brzoskowski September 6, 2022

Microsoft is disabling Basic authentication in an effort to improve data security in Exchange Online. Starting October 1, 2022, Microsoft will begin turning off Exchange

How to Use Staged Rollout to Migrate to Azure Active Directory Single Sign-On

James Babb August 31, 2022

Are you ready to make the move to Azure Active Directory (AD) single sign-on (SSO)? Do you want to avoid the complications of federated authentication

How to Connect to Microsoft Exchange Online PowerShell with Certificate Authentication in Azure Functions

David Conners August 25, 2022

In a previous blog series, I discussed how to use certificate authentication for PowerShell scripts running in a standard Windows environment. (See “Authentication Options for

Get Started With LDAP Security

Thomas Garrity August 10, 2022

You may recall that in March 2020 Microsoft was planning to configure a couple of Lightweight Directory Access Protocol (LDAP) security settings on behalf of

How to Use Dynamic Group Memberships in Azure Active Directory: Part 2

James Babb July 27, 2022

In Part 1 of this blog post, we looked at what goes into thinking about and designing your automated access policies. As discussed, we want

How to Use Dynamic Group Memberships in Azure Active Directory: Part 1

James Babb July 20, 2022

Many organizations control access to internal systems by simply relying on whether or not an account is enabled. However, users often change roles throughout their

How to Use CA Enrollment Agent to Securely Modify Certificate Requests

Andy Schneider June 22, 2022

Web application owners need to generate and submit certificate requests to secure traffic to their websites. Application owners often use IIS to generate or renew

Azure AD Enterprise Application Cleanup

Tony Brzoskowski June 8, 2022

The process of cleaning up your applications can be time-consuming but there are useful ways to report and manage applications in Azure.

The authority on identity and security in Microsoft