In the first installment of this new series on Entra ID Access Control, we explore the fundamentals of granting permissions to Entra ID user accounts and applications for task automation.
The need to restore deleted user accounts sometimes arises. The process is well understood and options are available to do the job in the Entra and Microsoft 365 admin centers. But if you need to restore a deleted user account and change its user principal name, that operation can only be done with PowerShell. This article explores why updating a user principal name during a restore might be necessary and the code to restore accounts.
Securing applications in an Entra tenant is crucial, especially after recent attacks like Midnight Blizzard. This article reviews how to use PowerShell to help identify privileged applications, their permissions, as well as client Secrets.
Often tenants create user sign-in reports based on the sign-in data held in user account properties. This article explains how to supplement that information with insights about the apps users sign into using sign-in audit logs. The combined information is more valuable than simply knowing when someone last successfully signed in.
Given the widespread use of guest accounts within Microsoft 365 to allow external sharing of resources, it’s almost inevitable that some unused guest accounts exist in any Microsoft 365 tenant. Identifying unused guest accounts is a good management practice. If the accounts serve no purpose, why keep them? This article explores how to find unused guest accounts. What you do with them later is up to you.
In this episode of the Practical 365 Podcast, we are joined by Maryl Fernando to discuss Ignite, Maester.dev, and more!
In this Episode of the Practical 365 Podcast, Steve and Paul talk Copilot wave 2, Exchange 2016/2019 end of support, new Teams updates, and more.
Entra ID sign-in data is a valuable source of information for Microsoft 365 tenant administrators. Although you can browse sign-in data through the Entra admin center, working with the data through PowerShell reveals all sorts of possibilities for analysis to answer questions about who is connecting to your tenant.
Moving Group-Based Licensing to the Microsoft 365 Admin Center can create some challenges. Luckily there is a way to avoid this. In this blog, we explain how to execute Group-Based License swaps with the help of the Microsoft Graph PowerShell SDK.
In this episode of Practical Endpoint, we explain two approaches to restricting Admin rights to corporate devices using Intune and Autopilot.
Sometimes Microsoft 365 tenants need to store specific data for objects like users and groups. The Graph provides several extensibility options. This article describes how to define and use schema extensions to store information about the container management labels assigned to Microsoft 365 Groups.
This article outlines how to get started with PIM, how to audit its use, and what workarounds could be circumventing your security controls.
