Many apps are created in the Azure AD for a tenant. Those apps have permissions to allow them to access data, and consent for those permissions are granted by administrators and users. How often do you check what apps are known in your Azure AD and what permissions those apps have? In this article, we review how to use the Graph API and PowerShell to create a report inventorying apps and permissions. What you do with that data is up to you!
Organizations often disable Azure AD accounts when users leave or for other reasons. What you might not know is that Teams then removes the account from membership of individual teams. A background process looks for disabled users and removes these accounts from team memberships. That doesn't sound too bad, but what's horrible is when you unblock an account. Teams takes a long time (at least 24 hours) to restore standard teams, it might not ever restore membership of org-wide teams, and private channel membership is removed too. It's not a good situation.
Microsoft provides many methods to manage a tenant’s data and users. PowerShell is a powerful tool to manage resources, including Conditional Access Policies using a set of cmdlets in the AzureAD module. In this article, Microsoft MVP Damian Scoles reviews the eight PowerShell cmdlets and how to use them.
On the show this week, we're talking about the Azure AD outage, new Exchange patches (yes, again!) and tools, how to get ready for Viva Connections, talking UserVoice and the biggest Roadmap and Message center news. And - Brian Desmond joins us to talk in a more positive way about the Azure AD Premium (and free) features you absolutely need to switch on.
Azure AD suffered a major outage on Monday, March 15 2021 where authentication failures stopped Microsoft 365 users working. Apps which didn't need to authenticate keep on working while any which needed to prove its credentials ran into an immediate roadblock.
Microsoft recently announced that Azure AD Connect cloud sync had reached GA (general availability), adding another option for directory synchronization with Microsoft 365. This article provides a background on directory synchronization and why it is fundamental for your journey to the cloud. Then we will discuss the solutions and give you the information you need to pick the right solution. Let’s begin with some basics.
Nearly seven years after the introduction of Office 365 Groups, Microsoft has finally admitted that tenants might just have a problem with "group sprawl." In other words, tenants have too many underused or unused groups because the groups have been created without oversight and not managed thereafter. Microsoft wants to discuss the problem with tenant administrators. Practical365.com thinks this is a great idea and strongly supports the initiative to get a handle on group sprawl once and for all.
MVP Vasil Michev discusses the further improvements made to the access reviews feature for admin roles in Azure AD/Office 365.
A summary of the new Azure Certifications announcements at Microsoft Ignite by Chris Rhodes. He goes into detail about Azure Administrator, Azure Developer and Azure Solutions Architect.
Microsoft recently updated Azure AD to move toward RBAC (Role Based Access Control) functionality. Find out what this means, particularly regarding License Admin roles.
How the Azure Active Directory baseline security policy enforces multi-factor authentication for privileged administrator accounts in Office 365 and Azure AD.