Microsoft Entra ID has released FIDO2 provisioning APIs in public preview, allowing administrators to pre-configure security keys for employees. This update aims to simplify the onboarding process and strengthen defenses against phishing attacks. Microsoft emphasizes the need for businesses to adopt phishing-resistant methods, such as passkeys and certificate-based authentication (CBA), to safeguard users from Adversary-in-the-Middle...
Identity Management (or Identity and Access Management) is a fundamental aspect of modern IT security. It involves the processes and technologies used to manage and verify the identity of users accessing IT resources. A key IAM solution is Active Directory, a product by Microsoft that is widely recognized for its robustness and versatility in managing on-premises user identities.
Active Directory (AD) centralizes user and computer authentication and authorization, allowing IT administrators to control user access to various network resources effectively. This is especially crucial for large organizations with complex structures and lots of users, where maintaining individual user accounts wouldn’t be practical. Active Directory streamlines management by providing a single, unified platform for identity management, enhancing security and operational efficiency.
Expanding the principles of Identity and Access Management to the cloud, Microsoft introduced 'Microsoft Entra ID' (formerly Azure Active Directory). It is a solution designed to simplify and secure the management of user identities for cloud-native applications.
Entra ID extends beyond the traditional boundaries of on-premises networks, embracing cloud services and mobile applications. Microsoft Entra ID offers enhanced features like multi-factor authentication (MFA), conditional access policies, and integrated identity governance capabilities.
Microsoft Entra ID is the IAM used by Microsoft 365. Entra ID can also be used in conjunction with on-premises Windows Server Active Directory, giving organizations the ability to extend their existing directory service to the cloud.
Last Update: Sep 04, 2024
In this blog post, you’ll be introduced to Silver SAML, a variant of Golden SAML. Golden SAML is a sophisticated attack technique used by hackers to bypass MFA (multifactor authentication) and gain access to sensitive data. Silver SAML operates similarly, but targets Microsoft Entra ID rather than on-premises Active Directory. Thanks to Semperis for sponsoring…
Last Update: Sep 04, 2024
Backup and replication are common data protection concepts, but they serve different purposes. Learn more about their differences and how they can benefit your data management strategy, especially how the backup vs replication argument relates to Active Directory (AD) and protecting it. What are backup and replication? Although backup and replication are both methods of…
Last Update: Sep 04, 2024
Microsoft has launched a new product family of identity and access management solutions called Microsoft Entra. This new suite of products is designed to help organizations protect access to any application or resource by making it easier to discover and manage permissions in multi-cloud environments. As cyberattacks like credential theft and social engineering become more…
Last Update: Sep 04, 2024
In this guide, I’ll provide information on where to download Microsoft Entra Connect (previously called Azure AD Connect) and walk you through the installation and configuration of it. Microsoft states that the most common topology is a single on-premises forest, with one or multiple domains, and a single Microsoft Entra ID tenant. My guide will…
Last Update: Sep 04, 2024
Microsoft has published its monthly roundup of all the new features and capabilities added to the Microsoft 365 subscription service. This month, the Redmond giant has highlighted several improvements made to the Windows 365 Cloud PC service, Microsoft Teams, Yammer, more. Here is a look at everything you need to know. Windows 365 Cloud PC…
Last Update: Sep 04, 2024
Microsoft is launching today its new CloudKnox Permissions Management solution in public preview. The cloud infrastructure entitlements management (CIEM) platform provides Azure Active Directory (AAD) customers with a unified solution through which they have visibility over users, identities, and permissions, as well as workloads across hybrid and multi-cloud environments. The CloudKnox Permissions Management dashboard Microsoft…
Last Update: Sep 04, 2024
Microsoft has announced some important updates for Azure Active Directory customers. The company says that the new Azure Active Directory certificate-based authentication (Azure AD CBA) service is now available in public preview for all commercial and US Government cloud customers. Previously, Azure Active Directory customers had to implement a federated certificate-based authentication mechanism. However, some…
Last Update: Sep 04, 2024
In this guide about Active Directory security, we’re going to detail five steps that IT admins need to follow to secure Active Directory environments in an organization. There are many best practices you’ll need to be familiar with to ensure Active Directory security, including restricting the use of privileged accounts, monitoring Windows Event Log for…
Last Update: Sep 04, 2024
Microsoft has recently announced that Azure AD Join support is coming to its Windows 365 Cloud PC service this month. The new feature is currently available in public preview for Windows 365 Enterprise customers. Windows 365 is a subscription service that enables organizations to create and run Cloud PCs remotely. It’s is available in two…