This week Microsoft announced that Microsoft Entra Verified ID has moved from public preview to general release. This has been quite the journey with general release being postponed twice that I’m aware of. I’ve been actively following the development of it since I was first introduced to it at the Microsoft Most Valuable Professional (MVP) Summit in Redmond way back in March 2019.… keep reading
Using Azure AD for SSO into SailPoint IdentityNow
Recently I had a request to integrate Azure AD for SSO into SailPoint IdentityNow. And as weird as it sounds previously integrations had been either with Active Directory or other IDentity-as-a-Service Providers (IDaaS).
It shouldn’t be too hard. I had visited the Service Provider IdentityNow Administration configuration screen before.… keep reading
Token Binding with Verifiable Credentials
Update: 21 July '22 Our Identity for All hackathon submission was runner up finalist.
It’s only been four months since the last Microsoft Hackathon targeted at my area of expertise. And Microsoft are back with another one. This time it is the Microsoft Identity for All Hackathon again hosted by DevPost.… keep reading
Decoding Azure AD Access Tokens with Python
Previously I have written a number of posts on interacting with Azure AD using the Microsoft Authentication Libraries (MSAL) and Python. This page here lists those posts along with a series using PowerShell. The Python related posts also detail decoding Azure AD access tokens with Python to determine when the access token will expire.… keep reading
I don’t know what my password is and I don’t care. I’ve reached peak password!
Passwordless, are we there yet? Even though Passwordless means different things to different people, in my interpretation of user initiated password obsolescence I’ve minimised typing passwords as much as possible. In this post I’ll detail how.
Eliminating Password Use in the Enterprise
You don’t need to wait for your organisation to start promoting and urging you to go passwordless.… keep reading
Decentralized Identity of Things
Update: 11 Feb '22 Our Decentralized Identity of Things submission to the Microsoft Decentralized Identity Hackathon has won the hackathon.
It has been sometime since I have entered a hackathon so it was awesome to enter once again, but also as part of a team.… keep reading
What does your Azure AD FIDO2 Passwordless Credential look like?
I’m curious. I often think, how does that work? Or why does it behave like that? We are well into the journey towards Passwordless adoption and I’ve spoken and posted about aspects of it before. Always a good place to start are the standards.… keep reading
Azure AD User Account Federation Report
Which Azure AD Tenants is my user account federated too? More specifically, in which Azure Active Directory Tenants do I have an Azure Active Directory B2B Guest Account? Is there a way I can quickly get an Azure AD User Account Federation Report?… keep reading
Digital Identity. Are we there yet?
This post relates to my Microsoft Reactor Sydney presentation from July 6 2021 – Digital Identity. Are we there yet?
Your Digital Identity is the foundation of who you are in our modern online world. In this session we take a quick trip down memory lane reminiscing on how our online digital identities have evolved and our early attempts at managing and securing them.… keep reading
Subscribing to Azure AD Change Notifications with PowerShell
Microsoft Graph webhooks or the ability to receive an Azure AD Change Notification has been around for some time. However, as I primarily deal with Azure AD for user and group objects I never previously had the need to utilize them.… keep reading