Here's how to upgrade Azure AD Connect to Entra Connect Sync.

https://thedxt.ca/2025/03/upgrade-azure-ad-connect-to-entra-connect-sync/

It’s great to see @merill has launched his #podcast! It’s been fun listening to!

If you work in #entraid , or just like hearing about #iam - give it a listen.

https://podcasts.apple.com/gb/podcast/entra-chat/id1801200012

Just spent like 3 days trying to figure out another Azure Tenants Intune rbac roles not applying... it was caused by the intune license group being nested under another group. Nested groups are a wonderful concept but the amount of times they have been the root of random issues is very high. #azure #intune #entraID

Blogged: ASP.NET Core delegated Microsoft OBO access token management (Entra only)

https://damienbod.com/2025/03/25/asp-net-core-delegated-microsoft-obo-access-token-management-entra-only/

If you have a #Windows 11 PC with a local account and you need to start using #EntraID and #InTune via a provided #Microsoft account, can you just connect the local account to the EntraID/InTune Microsoft account in the settings, or do you have to log in separately to the new Microsoft account (and set up your whole working environment again)?

(A page on the Microsoft site suggests it's possible to connect the two, but am not sure if I'm understanding it properly.)

The whole login loop issue in #entraid when migrating authentication policies sends me spare

I thought it was down to #sspr not supporting #fido, but thought it was fixed.

#securescore on #ms365 is a bit pants - it’s a great way to get a rough idea on your posture - but lacks context and takes FOREVER to update.

Want to know where you stand - give #Maester a go.

#entraid #powershell #office365

https://maester.dev/

iX-Workshop: Effektive zentrale Authentifizierung mit Entra ID

Erfahren Sie, wie Sie Entra ID als Cloud-basierten Authentifizierungsdienst einsetzen und hybride Identitäten sicher verwalten.

https://www.heise.de/news/iX-Workshop-Effektive-zentrale-Authentifizierung-mit-Entra-ID-10312597.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

𝐒𝐌𝐀𝐑𝐓 𝐋𝐎𝐂𝐊𝐎𝐔𝐓𝐒 𝐈𝐍 𝐌𝐈𝐂𝐑𝐎𝐒𝐎𝐅𝐓 𝐄𝐍𝐓𝐑𝐀 𝐈𝐃

Smart Lockouts in Microsoft Entra ID help protect Microsoft Entra ID accounts from password attacks. And smart lockouts are also called smart lockouts because they are smart in the meaning of that they should not negatively impact regular users.

Do you want to learn more about Smart Lockouts in Microsoft Entra ID? Watch my YouTube video bellow
https://youtu.be/7V7BJcqb5CM

𝐃𝐈𝐅𝐅𝐄𝐑𝐄𝐍𝐂𝐄 𝐁𝐄𝐓𝐖𝐄𝐄𝐍 𝐄𝐍𝐓𝐄𝐑𝐏𝐑𝐈𝐒𝐄 𝐀𝐏𝐏𝐒 𝐀𝐍𝐃 𝐀𝐏𝐏 𝐑𝐄𝐆𝐈𝐒𝐓𝐑𝐀𝐓𝐈𝐎𝐍𝐒 𝐈𝐍 𝐌𝐈𝐂𝐑𝐎𝐒𝐎𝐅𝐓 𝐄𝐍𝐓𝐑𝐀 𝐈𝐃

In Microsoft Entra ID, there are Enterprise Apps and App Registrations. Many administrators don’t know the difference between the two and confuse the two important concepts. But there is a major difference between them, and it is good to know it.

Watch my YouTube video bellow
https://youtu.be/4ljbruQOOiI

Practical Graph: Nag Users to Upgrade to a Strong Authentication Method

Convincing people to use MFA is one challenge. Convincing them to use a stronger authentication method than SMS is another. This article explains how to use PowerShell to find people still using SMS for MFA and send email to ask them to upgrade their authentication method.

https://practical365.com/upgrade-stronger-authentication-method-mfa/
#Microsoft365 #EntraID

Create Entra ID Guest invite using PowerShell and Graph API http://dlvr.it/TJQBh5 via PlanetPowerShell #PowerShell #GraphAPI #EntraID #MicrosoftGraph

𝐏𝐚𝐬𝐬𝐤𝐞𝐲𝐬 𝐢𝐧 𝐌𝐢𝐜𝐫𝐨𝐬𝐨𝐟𝐭 𝐀𝐮𝐭𝐡𝐞𝐧𝐭𝐢𝐜𝐚𝐭𝐨𝐫 𝐚𝐫𝐞 𝐧𝐨𝐰 𝐠𝐞𝐧𝐞𝐫𝐚𝐥𝐥𝐲 𝐚𝐯𝐚𝐢𝐥𝐚𝐛𝐥𝐞!

What does it mean? Users can now enroll passkeys in Microsoft Authenticator for their Microsoft Entra ID accounts in the default authentication methods setting. No need for key restrictions anymore!

iX-Workshop: Angriffe auf Entra ID abwehren

Lernen Sie, wie Sie Entra ID einschließlich Azure-Diensten härten und effektiv vor Angriffen schützen.

https://www.heise.de/news/iX-Workshop-Angriffe-auf-Entra-ID-abwehren-10298443.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

𝐃𝐈𝐅𝐅𝐄𝐑𝐄𝐍𝐂𝐄 𝐁𝐄𝐓𝐖𝐄𝐄𝐍 𝐌𝐅𝐀 𝐀𝐍𝐃 𝐏𝐇𝐈𝐒𝐇𝐈𝐍𝐆-𝐑𝐄𝐒𝐈𝐒𝐓𝐀𝐍𝐓 𝐌𝐅𝐀

Phishing is a very popular technique of attackers. They trick the user into entering their credentials on some fraudulent site pretending to be a corporate login page, for example to log into Microsoft Entra ID. The user enters their login credentials there and sends them to the attacker.

Watch my YouTube video where I show the difference between MFA and phishing-resistant MFA
https://youtu.be/NGx6tRKtEFI

Create Entra ID Guest invite using PowerShell and Graph API http://dlvr.it/TJGVql via PlanetPowerShell #PowerShell #GraphAPI #EntraID #Microsoft

Security-Webinar mit Frühbucherrabatt: Microsoft Entra ID – Dangerous Defaults

Microsofts Cloud-Angebote in Betrieb zu nehmen ist einfach – sie sicher zu betreiben, nicht. Wir erklären, wo und warum man unbedingt Hand anlegen muss.

https://www.heise.de/news/Security-Webinar-mit-Fruehbucherrabatt-Microsoft-Entra-ID-Dangerous-Defaults-10278230.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

If you have access to manage #EntraID in your org, make sure the User Settings > #LinkedIn option is disabled. Else you’re giving away your company’s data and making an enemy of your Privacy team. This is ridiculous #Microsoft, you should be ashamed.

𝐇𝐎𝐖 𝐓𝐎 𝐔𝐒𝐄 𝐓𝐄𝐌𝐏𝐎𝐑𝐀𝐑𝐘 𝐀𝐂𝐂𝐄𝐒𝐒 𝐏𝐀𝐒𝐒 𝐈𝐍 𝐌𝐈𝐂𝐑𝐎𝐒𝐎𝐅𝐓 𝐄𝐍𝐓𝐑𝐀 𝐈𝐃

When an organization uses passwordless authentication, they need to figure out how to onboard users. In other words, you need to solve the chicken/egg problem. If a user has not registered any passwordless authentication method, how can they authenticate to register a passwordless authentication method?

Temporary Access Pass (TAP) solves this problem.

Watch my YouTube video bellow on how to use Temporary Access Pass in Microsoft Entra ID
https://youtu.be/AqqvMqNcXRU