All blog posts related to the Entra ID (former Azure Active Directory (Azure AD)) and thus also to the user management of the Microsoft 365 Admin Center.
Recently, Microsoft released details about a new phishing attack technique called Device Code Phishing. This method, used by the threat actor Storm-2372, exploits the Device Code Authentication Flow, which is commonly used by devices without keyboards such as Microsoft Teams...
I always hated Smart Cards and called them legacy tech. But recently, I stumbled upon a very good use case. Have you ever tried typing in your password or using your FIDO2 key with gloves on? Yep, not that funny....
Did I ever mention that i f** love the new Platform SSO feature in Intune for macOS?Until now it wasn't possible to achieve a good SSO experience for Google Chrome but thanks to the PSSO feature which comes with an...
With the latest announcement from Microsoft (6th of May) Platform SSO for macOS is in public preview and with that the Entra Join for macOS. This brings a ton of new possibilities in managing macOS devices with Intune. Starting from...
When setting up Windows Hello for Business (WHFB) Cloud Kerberos Trust, one crucial step is creating the required Kerberos object in the local Active Directory. However, when running the command to create the Kerberos Server Object, you might encounter the...
In today's increasingly mobile and remote work environment, organizations are facing new challenges in securing access to their sensitive data and administrative portals. One of these challenges is the risk of token theft. Tokens are cryptographic keys that allow users...
Implementing seamless single sign-on (SSO) for Google Chrome can be an effective way to improve productivity and user experience in a corporate environment.You can use Intune to distribute either the SSO extension (Addin Windows Accounts) or, more recently, the specific...
Windows LAPS is a tool developed by Microsoft to manage local administrator passwords in Windows environments. It allows administrators to create and manage random and unique passwords for local administrator accounts on Windows computers. In addition to managing local administrator...
The "permission-issue" error with error code 8344 in Azure AD Connect can have two causes. One is not directly an error but more of a security precaution, the other actually has to do with permissions. The error looks like this:...
Conditional Access Policies that query "Device Info" such as the compliance status or a filter do not work natively in all browsers. Since devices that have a compliance status are mostly managed anyway, we can easily distribute these settings via...
