Category: Azure AD
-
Azure AD – Protect your directory better by using Administrative Units (Preview)
The Azure AD administrative units are in Preview since a while, but lastly they got an update and I decided to check the opportunities that it might gives. Right from the bat, this feature has still a lot of possible improvement, I list those which would affect me the most at the end of the…
Written by
-
Office 365 – Data Location
This blog post covers some information about the data location of your Office 365 tenant. First I show you where you can get the information, where your Office 365 data is currently stored. Open https://admin.microsoft.com and navigate to “Settings”:
Written by
-
Azure AD – Create dynamic group containing all Windows 10 Azure AD joined devices managed by Intune
Title says it all, and at first sight, simply to achieve, right? Let me tell you: In my opinion, it is not quite as easy as it should be. Lets start by creating a new group within Azure AD, to do this, navigate to your Azure AD and open the Groups blade, where you can…
Written by
-
Intune – Configure “Fast startup” (HiberBoot) for Windows 10
Since I changed my clients from GPO managed to Intune controlled, not all settings from GPO, but some of them needs to be set through Intune as well. As outlined in my previous blog, I tried to disable the Fast Startup Option on Windows 10 through a CSP. And I did not even found a…
Written by
-
Windows 10 settings management with Intune
Azure AD, Client Settings, Endpoint Protection, homelab, MDM, Office365, Remote Workplace, Windows 10When a journey ends, a new journey will begin. My journey with the old school domain joined and GPO managed devices within my LAB ended, and I finally conquer new areas with Azure AD join and Intune controlled devices. Due to the lack of opportunities, I still waited so long, because a lot of settings…
Written by
-
Azure Active Directory – Alert if a specific user is logged on
If you want to get an email Alert, if a specific Account is used for Login within Azure Active Directory, you will currently be required to use Cloud App Security. The feature Cloud App Security is included within the Enterprise Mobility & Security Suite E5 (EMS E5; source).
Written by
-
Azure AD Connect – Configure the “Enable-ADSyncExportDeletionThreshold” wisely
Today would shed some light on the cmdlet “Enable-ADSyncExportDeletionThreshold” which comes with the Azure AD Connect. If you are using Azure AD Connect to synchronize your On-Premise Active Directory to Azure Active Directory, Azure AD Connect will never execute a batch of more than 500 objects to delete. You can check the current value by…
Written by
-
Azure AD – Change from ADFS to pass-through Authentication
Since pass-through Authentication is GA and the major limitations are gone, I decided to change my Azure AD authentication against my local AD from ADFS to pass-through provided with Azure AD Connect. For those who are not that familiar with the concept of pass-through authentication, on this Microsoft Article “How it works”, you will find…
Written by
-
ADFS – Single Sign On with automatic Login on Edge Browser
Today I would like to share my experience when it comes to add a User Agent (e.g. Browser) to the list of Single Sign On capable applications. There is quite a good Article from Microsoft that describes how to add a User agent to the ADFS Configuration, you will find this Article here: https://docs.microsoft.com/en-us/windows-server/identity/ad-fs/operations/configure-intranet-forms-based-authentication-for-devices-that-do-not-support-wia
Written by