Author Archives: Armend
How to disable MFA for all users except the admins in the M365
For a number of reasons, I am often asked how to disable MFA for all users except the administrator in M365 , for example for: educational institutions like schools, etc… If you don’t want to do it, you can still … Continue reading
How to Turn Your Hobby into a Career as an IT Professional
It’s never too late to turn your passion into a career, as many companies do not place much emphasis on a diploma or degree in IT but are looking for experienced and enthusiastic colleagues. The transition from hobbyist to IT … Continue reading
Can I set up recurring access reviews for different Azure AD roles
Here is how you can set up recurring access reviews for different Azure AD roles using. Azure AD Privileged Identity Management (PIM): Create an Access Review: In the Microsoft Entra admin center, go to Identity governance > Privileged Identity … Continue reading
Posted in Entra ID (Azure)
Leave a comment
How does DMARC improve email authentication compared to using SPF and DKIM alone
DMARC improves email authentication by building upon SPF and DKIM in a few key ways: Alignment check: DMARC requires the domain in the “From:” header of the email to align with either the domain specified by SPF … Continue reading
Posted in Generally
Leave a comment
How do I limit the duration of privileged role assignments in Entra ID
Limiting the Duration of Privileged Role Assignments in Entra ID Entra ID (formerly Azure Active Directory) provides the ability to limit the duration of privileged role assignments, which can help enhance the security of your organization’s identity management. Here’s how … Continue reading
Posted in Generally
Leave a comment
How to create custom roles with specific permissions in Azure AD
Creating Custom Roles with Specific Permissions in Azure AD Creating custom roles with specific permissions in Azure Active Directory (Azure AD) can be a useful way to grant users the exact level of access they need, without giving them unnecessary … Continue reading
Posted in Entra ID (Azure)
Leave a comment
What are the key benefits of using DKIM, DMARC, and SPF together
Using DKIM, DMARC, and SPF together provides several key benefits for email security: Prevents email spoofing: SPF checks the IP address of the sending mail server against a list of authorized IP addresses to verify the sender’s … Continue reading
Posted in Generally
Leave a comment
How do DKIM, DMARC, and SPF work together to secure email
DKIM, DMARC, and SPF work together to provide a comprehensive email authentication and security framework: Sender Policy Framework (SPF): SPF is an email authentication protocol that allows the owner of a domain to specify which mail servers … Continue reading
Posted in Generally
Leave a comment
How can I automate the revocation of privileged roles in Azure AD
Here are the key steps to automate the revocation of privileged roles in Azure AD: Use Azure AD Privileged Identity Management (PIM): PIM provides the ability to create access reviews for Azure AD roles. This allows you … Continue reading
Posted in Entra ID (Azure)
Leave a comment
How can I automate the reporting of Azure AD role assignments
Here are a few ways to automate the reporting of Azure AD role assignments: Use PowerShell scripts: The Get-AzRoleAssignmentReport.ps1 script fetches role assignments and compiles them into a comprehensive report sent via email. It requires the managed … Continue reading
Posted in Entra ID (Azure)
Leave a comment