Enterprise Microsoft and SailPoint Identity & Access Management Architect
This blog uses WordPress. Why WordPress? Well, it was the most prevalent platform when I started this blog back in 2016 and it was more powerful and extensible than Blogger which I had used previously. Anyway, that’s rather irrelevant for this post which about accessing WordPress APIs with PowerShell.… keep reading
I’ve authored numerous posts on using the Microsoft Authentication Libraries to connect to Microsoft Graph using PowerShell and Python. They cover using both public and confidential client methods. But what about a method that can be either? In this post I show how to use the Authorization Code with PKCE Flow and PowerShell to authenticate and authorize against Azure Active Directory for Microsoft Graph access.… keep reading
Proof Key for Code Exchange (PKCE) is a mechanism often used with an OAuth2 Authorization Code Grant flow to provide an enhanced level of security when authenticating to an Identity Provider such as Microsoft Graph to get an access token. In order to use PKCE a code_verifier is generated along with a code_challenge.… keep reading
Registering Microsoft Graph applications using the Azure Portal and assigning API Permissions is trivial. When you are automating that process though rather than choosing API permissions using the Azure Portal Application Registration UI, you need to know the Microsoft Graph Permission Scope IDs.… keep reading
Almost three weeks ago I started an exciting new role with Avanade in their Global Cybersecurity Centre of Excellence as a Digital Identity Architect. Moving back into a global organisation meant I was issued with my first company issued and managed laptop in over 6 years.… keep reading
I’m curious. I often think, how does that work? Or why does it behave like that? We are well into the journey towards Passwordless adoption and I’ve spoken and posted about aspects of it before. Always a good place to start are the standards.… keep reading
Previously I’ve written about using MSAL and PowerShell with Application Permissions and Client Credentials and Certificate based authentication. Also with Delegated Permissions and Device Code flow authentication. The one I haven’t written a post on is performing interactive authentication to Microsoft Graph using MSAL with PowerShell and Delegated Permissions.… keep reading
I’ve been using Jupyter Notebook with PowerShell since the early releases of of the Public Preview of PowerShell Support in Jupyter Notebooks in March 2020. I’ve written about how to use PowerShell Jupyter Notebook with Docker and Binder and even enabling C#, F# & PowerShell .NET… keep reading
Last week Yubico announced the general availability of their desktop .NET SDK for YubiKeys. I jumped over to their GitHub repo to check out what functionality the .NET SDK exposed. The good news is that the Personal Identity Verification (PIV) slots used for certificates are accessible.… keep reading
This is the accompanying blogpost for my SailPoint Navigate Developer presentation DevOps for SailPoint IdentityNow with PowerShell from August 19 2021. If you are registered you can go direct to the presentation with this link.
A summary of what I showed in the demonstration is below.… keep reading