As I mentioned in a recent post I’ve recently dived back into Microsoft Identity Manager. The focus of this post is some development I recently did to build a Microsoft Dynamics 365 Finance & Operations Management Agent for Microsoft Identity Manager.… keep reading
Using the new Granfeldt FIM/MIM PowerShell Management Features
Last week Søren Granfeldt released the first update to his hugely popular Granfeldt FIM/MIM PowerShell Management in over 2 years. This post looks at the latest release and using the new Granfeldt FIM/MIM PowerShell Management Features.
The new features are:
- A new option to specify an auxiliary set of credentials that is passed to scripts.
Microsoft Graph using MSAL with Python and Delegated Permissions
Recently I wrote the Microsoft Graph using MSAL with Python post and mentioned that I would be writing up Python versions of similar MSAL posts I have written using PowerShell. Specifically, MSAL using certificate-based authentication and the topic for this post MSAL with Python and Delegated Permissions.… keep reading
Sending Granfeldt PowerShell Management Agent Events to the Windows Application Event Log
It has been a while since I wrote a Microsoft Identity Manager or even a Granfeldt PowerShell Management Agent related post. Primarily because it has been quite some time since I have done any development for MIM. The last few weeks though I have, and I wanted to output PowerShell Management Agent Events to the Windows Application Event Log.… keep reading
Azure AD Authentication Methods Summary Reports using Microsoft Graph and PowerShell
Recently I wrote about reporting on individual Azure AD Users Authentication Methods using Microsoft Graph and PowerShell. Whilst this is great at a user level, Azure AD Authentication Methods Summary Reports at an organization level are often requested by IT Management.… keep reading
Finding Stale Azure AD B2B Guest Accounts based on lastSignInDateTime
Collaboration between Azure Active Directory tenants typically involves Azure AD Guest accounts. After a few years, the proliferation of ‘Guest’ accounts usually becomes a focus, especially for larger tenants. As Azure AD has matured the meta data associated with accounts, along with Microsoft Graph improvements is making it easier to define and locate stale Azure AD B2B Guest Accounts.… keep reading
Reporting on Users’ Azure AD Authentication Methods using Microsoft Graph and PowerShell
Reporting on users’ registered Azure AD Authentication methods is a more common request from enterprise security teams recently with the advance of Passwordless Authentication. In mid 2020 Microsoft added the ability to report on Azure AD Authentication Methods using Microsoft Graph, however ONLY with Delegated Microsoft Graph permissions.… keep reading
Getting Microsoft 365 Individual User Usage Reports with PowerShell
The ability to obtain Individual User Usage Reports has been possible in Office365 for many years. However, they were only available from each individual service such as Teams, OneDrive, Exchange, SharePoint and Yammer. If you wanted a holistic view you needed to query each of the services API’s and collate the responses for each identity.… keep reading
Accessing the Windows Certificate Store using Python
As mentioned recently in a few posts, I’ve been writing a few scripts using Python over my usual PowerShell. I’m quickly realizing why I love PowerShell so much. It makes automation tasks so easy. Today’s challenge was programmatically getting a certificate out of the Windows Certificate Store using Python.… keep reading
Microsoft Graph using MSAL with Python
For MSAL with Python and Delegated Permissions see this post. For MSAL with Python and Certificate Authentication see this post.
The Microsoft Authentication Libraries (MSAL) started to become generally available in May 2019 and I’ve previously written numerous posts on leveraging the .NET… keep reading