Microsoft has a pre-installation check script designed to identify why devices can’t be updated to the new Teams client. The script also suggests solutions to any problems it finds. Administrators can save time moving to new Teams by running the script in these two use cases:
SAML certificates are an important part of Single Sign-On (SSO) in a Security Assertion Markup Language (SAML) environment. SAML certificates are used to establish trust between the identity provider (IdP) and the service provider (SP) in a SAML-based SSO scenario. When setting up an enterprise application in Entra, a default SAML certificate is generated. At least one active certificate is necessary to authenticate single sign-on. Continue reading
For a number of reasons, I am often asked how to disable MFA for all users except the administrator in M365 , for example for: educational institutions like schools, etc…
If you don’t want to do it, you can still limit access to specific IPs or networks. This can be done under the ‘Network’ settings by selecting ‘Any network’ or specifying particular locations. However, I’ll explain this topic in more detail in another post.
To disable multi-factor authentication (MFA) for all users except the administrator in a Microsoft 365 environment using Conditional Access, the following steps are required:
It’s never too late to turn your passion into a career, as many companies do not place much emphasis on a diploma or degree in IT but are looking for experienced and enthusiastic colleagues. The transition from hobbyist to IT expert is not only possible but also incredibly rewarding. Here are some steps you can take on your journey to transform your passion into a career. Continue reading
Here is how you can set up recurring access reviews for different Azure AD roles using.
Azure AD Privileged Identity Management (PIM):
DMARC improves email authentication by building upon SPF and DKIM in a few key ways:
Entra ID (formerly Azure Active Directory) provides the ability to limit the duration of privileged role assignments, which can help enhance the security of your organization’s identity management. Here’s how you can do it:
Privileged role assignments in Entra ID grant users elevated permissions, such as the ability to manage other users, access sensitive data, or perform critical administrative tasks. Limiting the duration of these assignments can help reduce the risk of unauthorized access and ensure that users only have the necessary permissions for the required time. Continue reading
Creating custom roles with specific permissions in Azure Active Directory (Azure AD) can be a useful way to grant users the exact level of access they need, without giving them unnecessary privileges. Here’s a step-by-step guide on how to do it:
Azure AD has a set of built-in roles, such as Global Administrator, User Administrator, and Security Administrator. These roles have predefined permissions that you can assign to users. However, if the built-in roles don’t meet your specific needs, you can create custom roles. Continue reading
Using DKIM, DMARC, and SPF together provides several key benefits for email security:
DKIM, DMARC, and SPF work together to provide a comprehensive email authentication and security framework:
