Entra ID

Latest Articles

Using Adaptive Scopes with Microsoft 365 Retention Policies for Users and Groups 47 Comments

Using Adaptive Scopes with Microsoft 365 Retention Policies for Users and Groups

Adaptive scopes are a new way to dynamically target sets of locations (sites, users, and groups) for Microsoft 365 retention policies. In this article, we discuss the basics of adaptive scopes and how to build the filters used in the scopes, and then how to use adaptive scopes in retention policies. Adaptive scopes are well suited to the kind of processing needed by large enterprises, which is good because they required Office 365 E5 licenses.

November 11, 2021
Using the Microsoft SDK for PowerShell to Report Azure AD Account Sign-ins 9 Comments

Using the Microsoft SDK for PowerShell to Report Azure AD Account Sign-ins

The Microsoft Graph SDK for PowerShell can be used for many purposes, among which is access to Azure AD account sign-in data. In this article, we explain how to use the SDK cmdlets to retrieve sign-in data for both tenant and guest accounts and report what we find. You can use the report to identify potentially unused accounts which might not need some expensive licenses, or guest accounts that are no longer used.

October 26, 2021
How to Create a Microsoft 365 Licensing Report Using the Microsoft Graph SDK for PowerShell 140 Comments

How to Create a Microsoft 365 Licensing Report Using the Microsoft Graph SDK for PowerShell

After figuring out how to convert a script from using Azure AD licensing cmdlets (due to stop working in June 2022), we move on to create a licensing report for a tenant using cmdlets from the Microsoft Graph SDK for PowerShell. The code is pretty straightforward, but you need to do some up-front work to extract and prepare some input files containing product and service plan codes. Given that Microsoft is increasing its license fees, it's a good time to report this information...

October 14, 2021
Azure Bootcamp – Learn From Global Experts

Azure Bootcamp – Learn From Global Experts

On September 30, 2021, IT pros and developers from South Africa are coming together once again to host the first online Azure Bootcamp event! User Group Leads will bring you the latest information and features about Azure and Cloud Computing. The online event is free and hosted live on Twitch.

September 29, 2021
Connecting to the Microsoft Graph Using the PowerShell SDK 49 Comments

Connecting to the Microsoft Graph Using the PowerShell SDK

The Microsoft Graph SDK for PowerShell exists to help developers use Graph API calls from PowerShell. It works, but like anything in life, there's a right way to connect and use the SDK and a wrong way. In this article we explore topics like how to connect to the right tenant, how permissions are managed (or not), and why running Graph SDK cmdlets interactively isn't something you should do in production. Good as the SDK is, Microsoft has some big issues to solve to address some obvious security issues.

September 23, 2021
Microsoft Forces Move from Azure AD Cmdlets for License Management 9 Comments

Microsoft Forces Move from Azure AD Cmdlets for License Management

On June 30, 2022, Azure AD and Microsoft Online Services cmdlets will stop working for license management. The result is that you need to upgrade PowerShell scripts which use these cmdlets. The choice is to use Graph API calls or cmdlets from the Microsoft Graph PowerShell SDK. In this article, we explore the steps necessary to upgrade a script to remove service plans from an Office 365 license (SKU).

September 9, 2021
How to Convert Azure B2B Guest Users to Members While Maintaining User Collaboration 19 Comments

How to Convert Azure B2B Guest Users to Members While Maintaining User Collaboration

Azure B2B guest accounts are often created during a Merger & Acquisition, so teams from both organizations can easily collaborate during the business and technology integration. However, these external users with B2B Guest accounts in their directory will eventually need to be migrated, which is problematic since B2B Guest accounts aren’t recognized as being licensed. The guest account can be removed and a new one created, but previous permissions would be lost. So how do we preserve permissions, keep collaborating without managing two sets of credentials while preparing the user account for data migrations? This article walks you through a solution that can be used in certain situations to help you easily manage the account to meet your needs.

September 8, 2021
For Heaven’s Sake, Just Turn on MFA Already One comment

For Heaven’s Sake, Just Turn on MFA Already

Microsoft has recently made major strides to improve the capability and resiliency of multi-factor authentication in Azure AD; however, this article highlights the four practical ways in which you can take advantage of MFA in your Microsoft 365 estate, and just turn the darn thing on already!

August 12, 2021
Windows Laptops, Remote Work and Today’s Threat Landscape

Windows Laptops, Remote Work and Today’s Threat Landscape

The reality is, remote employees and working situations are here to stay. Unfortunately, many organizations have regressed in terms of endpoint security, partly due to the pandemic as well as the subsequent rush to implement remote work solutions. To help make sense of the many technologies out there and determine the best approach for your organization, this article explores different options from the traditional Active Directory domain membership with group policy management, to co-management with Configuration Manager and Microsoft Intune.

August 9, 2021