darrenjrobinson – Bespoke Identity and Access Management Solutions
Enterprise Microsoft and SailPoint Identity & Access Management Architect
Collaboration between Azure Active Directory tenants typically involves Azure AD Guest accounts. After a few years, the proliferation of ‘Guest’ accounts usually becomes a focus, especially for larger tenants. As Azure AD has matured the meta data associated with accounts, along with Microsoft Graph improvements is making it easier to define and locate stale Azure AD B2B Guest Accounts.… keep reading
Reporting on users’ registered Azure AD Authentication methods is a more common request from enterprise security teams recently with the advance of Passwordless Authentication. In mid 2020 Microsoft added the ability to report on Azure AD Authentication Methods using Microsoft Graph, however ONLY with Delegated Microsoft Graph permissions.… keep reading
The ability to obtain Individual User Usage Reports has been possible in Office365 for many years. However, they were only available from each individual service such as Teams, OneDrive, Exchange, SharePoint and Yammer. If you wanted a holistic view you needed to query each of the services API’s and collate the responses for each identity.… keep reading
For MSAL with Python and Delegated Permissions see this post. For MSAL with Python and Certificate Authentication see this post.
The Microsoft Authentication Libraries (MSAL) started to become generally available in May 2019 and I’ve previously written numerous posts on leveraging the .NET… keep reading
The ability to customize Azure AD Login branding with company images has been around for many years. Recently though additional configuration options have become available. Specifically, the ability to provide Username hint and Sign-in page text. Having recently done a mock-up of this for an engagement there were a few items that I want to recall for the next time I need to do this.… keep reading
I’ve just published v1.1.2 of the SailPoint IdentityNow PowerShell Module to both GitHub and the PowerShell Gallery. Release 1.1.2 of the SailPoint IdentityNow PowerShell Module is the result of considerable effort by myself and Sean McGovern. Release 1.1.2’s numerous updates comprise changes to cmdlets leveraging legacy v2 Basic Authentication, two new cmdlets, cmdlet updates for API changes, bug-fixes and documentation updates.… keep reading
Close to 3 years ago I authored this post on using PowerShell for Certificate based Azure AD Authentication using ADAL (Active Directory Authentication Library). More recently I’ve published posts on using MSAL (MicroSoft Authentication Library) with PowerShell for Application and Delegated integration with the Microsoft Graph.… keep reading
In October last year I authored this post that provided a getting started guide to using MSAL with PowerShell. That post also hinted at future posts expanding on additional functionality. Finally, I’m delivering on that with this post that will dive into using MSAL with PowerShell and delegated permissions.… keep reading
There is no denying that 2020 has been a roller-coaster of a year and we have only just made it halfway. Half way also means that we are in July and the annual Microsoft MVP (Most Valuable Professional) renewal process has just been completed.… keep reading
Update August 2020: Release 1.1.2 is now available. Details in this post here.
I’ve just published v1.1.0 of the SailPoint IdentityNow PowerShell Module to both GitHub and the PowerShell Gallery. Release 1.1.0 of the SailPoint IdentityNow PowerShell Module is the result of considerable effort by myself and Sean McGovern.… keep reading