Enterprise Microsoft and SailPoint Identity & Access Management Architect
It’s only been four months since the last Microsoft Hackathon targeted at my area of expertise. And Microsoft are back with another one. This time it is the Microsoft Identity for All Hackathon again hosted by DevPost. This hackathon is targeted more at developers than security experts with the challenge of building a solution on the Microsoft Identity Platform.… keep reading
Previously I have written a number of posts on interacting with Azure AD using the Microsoft Authentication Libraries (MSAL) and Python. This page here lists those posts along with a series using PowerShell. The Python related posts also detail decoding Azure AD access tokens with Python to determine when the access token will expire.… keep reading
I’ve been building a new project using an ESP32 microcontroller. Plugging the ESP32 into my Windows development laptop wasn’t showing up the com port for the device. Looking into Device Manager I saw the error below associated with the CP2102 USB to UART Bridge Controller.… keep reading
Today I was keen to try out some new ideas I wanted to explore in a Jupyter Notebook. I hadn’t used that environment for about six months so thought I’d grab the latest version of dotnet interactive before I started. Looking back at a previous post on updating dotnet interactive I jumped straight to dotnet tool search dotnet-interactive to find the latest version.… keep reading
IT Certifications are something I have no shortage of. When I entered the IT industry as a graduate in the early 1990’s obtaining certifications was the primary way of showing capability and competency in the industry. It was the early days of the internet and most IT related technical resources were distributed on compact discs with patches made available via bulletin boards and Compuserve.… keep reading
Passwordless, are we there yet? Even though Passwordless means different things to different people, in my interpretation of user initiated password obsolescence I’ve minimised typing passwords as much as possible. In this post I’ll detail how.
You don’t need to wait for your organisation to start promoting and urging you to go passwordless.… keep reading
Update: 11 Feb '22 Our Decentralized Identity of Things submission to the Microsoft Decentralized Identity Hackathon has won the hackathon.
It has been sometime since I have entered a hackathon so it was awesome to enter once again, but also as part of a team.… keep reading
This blog uses WordPress. Why WordPress? Well, it was the most prevalent platform when I started this blog back in 2016 and it was more powerful and extensible than Blogger which I had used previously. Anyway, that’s rather irrelevant for this post which about accessing WordPress APIs with PowerShell.… keep reading
I’ve authored numerous posts on using the Microsoft Authentication Libraries to connect to Microsoft Graph using PowerShell and Python. They cover using both public and confidential client methods. But what about a method that can be either? In this post I show how to use the Authorization Code with PKCE Flow and PowerShell to authenticate and authorize against Azure Active Directory for Microsoft Graph access.… keep reading
Proof Key for Code Exchange (PKCE) is a mechanism often used with an OAuth2 Authorization Code Grant flow to provide an enhanced level of security when authenticating to an Identity Provider such as Microsoft Graph to get an access token. In order to use PKCE a code_verifier is generated along with a code_challenge.… keep reading