Enterprise Microsoft and SailPoint Identity & Access Management Architect
Collaboration between Azure Active Directory tenants typically involves Azure AD Guest accounts. After a few years, the proliferation of ‘Guest’ accounts usually becomes a focus, especially for larger tenants. As Azure AD has matured the meta data associated with accounts, along with Microsoft Graph improvements is making it easier to define and locate stale Azure AD B2B Guest Accounts.… keep reading
Reporting on users’ registered Azure AD Authentication methods is a more common request from enterprise security teams recently with the advance of Passwordless Authentication. In mid 2020 Microsoft added the ability to report on Azure AD Authentication Methods using Microsoft Graph, however ONLY with Delegated Microsoft Graph permissions.… keep reading
The ability to obtain Individual User Usage Reports has been possible in Office365 for many years. However, they were only available from each individual service such as Teams, OneDrive, Exchange, SharePoint and Yammer. If you wanted a holistic view you needed to query each of the services API’s and collate the responses for each identity.… keep reading
As mentioned recently in a few posts, I’ve been writing a few scripts using Python over my usual PowerShell. I’m quickly realizing why I love PowerShell so much. It makes automation tasks so easy. Today’s challenge was programmatically getting a certificate out of the Windows Certificate Store using Python.… keep reading
The Microsoft Authentication Libraries (MSAL) started to become generally available in May 2019 and I’ve previously written numerous posts on leveraging the .NET MSAL library via the MSAL.PS module here. More recently I’ve been developing a few projects in Python that require integration with Microsoft Graph.… keep reading
By default the AzureML environment provides the Python and R kernels. The reason you’re here though will be because, like me you want PowerShell. This post details the steps to enable the .NET Interactive (C#, F# & PowerShell) kernels in AzureML.… keep reading
The ability to customize Azure AD Login branding with company images has been around for many years. Recently though additional configuration options have become available. Specifically, the ability to provide Username hint and Sign-in page text. Having recently done a mock-up of this for an engagement there were a few items that I want to recall for the next time I need to do this.… keep reading
I’ve just built another new PowerShell Azure HTTPTrigger Function locally using VSCode. I tested the Function locally and it did exactly what it was supposed too. I then deployed the Function to Azure and tested it using PowerShell, and it also worked as expected.… keep reading
As much as I love PowerShell Azure Functions anytime I need to develop a new one leveraging a service as an output binding I cringe. I cringe as documentation for examples leveraging output bindings typically don’t have a PowerShell example. Take my most recent requirement for Azure Functions SendGrid Output Binding with PowerShell and the documentation is non existent.… keep reading
It’s been a while since I’ve developed any Azure Functions. There was a time, where I was knocking them out very regularly. Well this week whilst working on a new project I jumped back into PowerShell Azure Functions, and cloud being cloud they’ve moved on in recent times.… keep reading