Could the Cloud Kerberos Trust be the final step in allowing you to move workstations to Azure AD joined machines? In this Blog, Andy Schneider dives into accessing On-premises Kerberos protected resources using passwordless authentication.
On this weeks' show, Steve and Paul review the TEC European Roadshow, new Microsoft Teams features, new Intune security features, in-product ads in SharePoint Online, and more!
In this week's Practical 365 Podcast, Steve and Paul Discuss new security updates for Exchange Server, what you should do if you are still on Exchange Server 2013, Azure AD Cross Tenant Sync arrives in the roadmap for imminent release, and much more!
When setting up your SIEM, ingesting logs from Active Directory is essential. This blog dives into the two options for ingesting AD logs and compare their strengths and weaknesses.
With the move to the cloud, many organizations synchronize identities to Azure Active Directory. This makes an attacker’s job easier as they have a single point where they can attempt to compromise accounts. In this article, Thijs Lecomte walks through the protection and detection mechanisms available to repel password spray attacks.
This week on the show, Steve and Paul are joined by Sigi Jagott, long-time MVP and Exchange Server expert, to discuss best practice when upgrading on-premises servers to Exchange 2019, Native Cross-Tenant Migrations, Azure AD resiliency, and more!
Preparation, Preparation, and More Preparation Migrations in Microsoft 365 are a complex beast. It seems every time you feel like you have captured everything, more apps or functionalities appear. Every shiny new tool Microsoft releases is another consideration for migration teams and IT departments. Planning for migrations – tenant-to-tenant or otherwise – is a mammoth […]
In the very early Windows NT Days, we had computer accounts connected to domain controllers. This provided the early building blocks of securing data and computers in company networks. Since then, our entire digital landscape has transformed. With modern networking and cloud adoption across so much of our world, it makes sense for our computer accounts to make the move from on-prem Active Directory (AD) to Azure Active Directory (AAD).
Kerberos Delegations can be confusing, but it is important to understand how delegations behave when configured across trust boundaries.
I used Microsoft Defender for Cloud Apps in a project with Microsoft 365 E5 licenses and realized it’s a handy and powerful tool at a reasonable price even if purchased as a standalone product. This post will outline practical use cases for using it to monitor and enforce restrictions on Microsoft 365 apps and some third-party apps to reduce the likelihood of information leakage.
Over time, Microsoft 365 tenants tend to accumulate large numbers of guest accounts in Entra ID. And over time, some of those accounts become obsolete and inactive. In this article, we explore how to use PowerShell to analyze the activity of guest accounts to figure out what accounts are inactive and which are candidates for removal. It's something you should do annually.
As Microsoft Teams continues to be rapidly adopted across the globe, the number of applications that integrate with Teams grows as well. So much that it's often difficult for decision-makers and administrators to determine what apps are beneficial to their organization and necessitate inclusion. Fortunately, the Microsoft Teams admin center provides the data around each app you need to decide. This article helps you navigate the Teams admin center; explores the various app types available; and provides detail around permission policies, setup policies, and things like Resource-specific consent you’ll want to familiarize yourself with so you can effectively manage Teams apps for your organization.
