Identity Management

  • Blog
  • Identity Management
Network Security

Microsoft Entra ID Enhances Security with FIDO2 Provisioning APIs for Simplified Onboarding

Microsoft Entra ID has released FIDO2 provisioning APIs in public preview, allowing administrators to pre-configure security keys for employees. This update aims to simplify the onboarding process and strengthen defenses against phishing attacks. Microsoft emphasizes the need for businesses to adopt phishing-resistant methods, such as passkeys and certificate-based authentication (CBA), to safeguard users from Adversary-in-the-Middle...

About Identity Management

Identity Management (or Identity and Access Management) is a fundamental aspect of modern IT security. It involves the processes and technologies used to manage and verify the identity of users accessing IT resources. A key IAM solution is Active Directory, a product by Microsoft that is widely recognized for its robustness and versatility in managing on-premises user identities.

Active Directory (AD) centralizes user and computer authentication and authorization, allowing IT administrators to control user access to various network resources effectively. This is especially crucial for large organizations with complex structures and lots of users, where maintaining individual user accounts wouldn’t be practical. Active Directory streamlines management by providing a single, unified platform for identity management, enhancing security and operational efficiency.

Expanding the principles of Identity and Access Management to the cloud, Microsoft introduced 'Microsoft Entra ID' (formerly Azure Active Directory). It is a solution designed to simplify and secure the management of user identities for cloud-native applications.

Entra ID extends beyond the traditional boundaries of on-premises networks, embracing cloud services and mobile applications. Microsoft Entra ID offers enhanced features like multi-factor authentication (MFA), conditional access policies, and integrated identity governance capabilities.

Microsoft Entra ID is the IAM used by Microsoft 365. Entra ID can also be used in conjunction with on-premises Windows Server Active Directory, giving organizations the ability to extend their existing directory service to the cloud.

LATEST

microsoft security hero approved

Silver SAML: Active Directory Attack Technique Explained

Last Update: Sep 04, 2024

In this blog post, you’ll be introduced to Silver SAML, a variant of Golden SAML. Golden SAML is a sophisticated attack technique used by hackers to bypass MFA (multifactor authentication) and gain access to sensitive data. Silver SAML operates similarly, but targets Microsoft Entra ID rather than on-premises Active Directory. Thanks to Semperis for sponsoring…

View Article
Network Security

Active Directory Backup vs Replication (And Why You Need to Be Clear on the Difference Now)

Last Update: Sep 04, 2024

Backup and replication are common data protection concepts, but they serve different purposes. Learn more about their differences and how they can benefit your data management strategy, especially how the backup vs replication argument relates to Active Directory (AD) and protecting it. What are backup and replication? Although backup and replication are both methods of…

View Article
Network Security

Microsoft Announces Entra, A New Identity and Access Management Suite

Last Update: Sep 04, 2024

Microsoft has launched a new product family of identity and access management solutions called Microsoft Entra. This new suite of products is designed to help organizations protect access to any application or resource by making it easier to discover and manage permissions in multi-cloud environments. As cyberattacks like credential theft and social engineering become more…

View Article
Datacenter networking servers

How to Download and Set Up Microsoft Entra Connect

Last Update: Sep 04, 2024

In this guide, I’ll provide information on where to download Microsoft Entra Connect (previously called Azure AD Connect) and walk you through the installation and configuration of it. Microsoft states that the most common topology is a single on-premises forest, with one or multiple domains, and a single Microsoft Entra ID tenant. My guide will…

View Article

What’s New in Microsoft 365 – February 2022

Last Update: Sep 04, 2024

Microsoft has published its monthly roundup of all the new features and capabilities added to the Microsoft 365 subscription service. This month, the Redmond giant has highlighted several improvements made to the Windows 365 Cloud PC service, Microsoft Teams, Yammer, more. Here is a look at everything you need to know.  Windows 365 Cloud PC…

View Article

Microsoft Launches CloudKnox Permissions Management in Public Preview

Last Update: Sep 04, 2024

Microsoft is launching today its new CloudKnox Permissions Management solution in public preview. The cloud infrastructure entitlements management (CIEM) platform provides Azure Active Directory (AAD) customers with a unified solution through which they have visibility over users, identities, and permissions, as well as workloads across hybrid and multi-cloud environments. The CloudKnox Permissions Management dashboard Microsoft…

View Article

Microsoft Simplifies Identity Management with Azure Active Directory Certificate-Based Authentication

Last Update: Sep 04, 2024

Microsoft has announced some important updates for Azure Active Directory customers. The company says that the new Azure Active Directory certificate-based authentication (Azure AD CBA) service is now available in public preview for all commercial and US Government cloud customers. Previously, Azure Active Directory customers had to implement a federated certificate-based authentication mechanism. However, some…

View Article
Security hero image

Active Directory Security – 5 Steps to Secure AD

Last Update: Sep 04, 2024

In this guide about Active Directory security, we’re going to detail five steps that IT admins need to follow to secure Active Directory environments in an organization. There are many best practices you’ll need to be familiar with to ensure Active Directory security, including restricting the use of privileged accounts, monitoring Windows Event Log for…

View Article

Microsoft to Add Azure AD Join Support to Windows 365 Cloud PCs This Month

Last Update: Sep 04, 2024

Microsoft has recently announced that Azure AD Join support is coming to its Windows 365 Cloud PC service this month. The new feature is currently available in public preview for Windows 365 Enterprise customers. Windows 365 is a subscription service that enables organizations to create and run Cloud PCs remotely. It’s is available in two…

View Article
Go to page