darrenjrobinson – Bespoke Identity and Access Management Solutions
Enterprise Microsoft and SailPoint Identity & Access Management Architect
Proof Key for Code Exchange (PKCE) is a mechanism often used with an OAuth2 Authorization Code Grant flow to provide an enhanced level of security when authenticating to an Identity Provider such as Microsoft Graph to get an access token. In order to use PKCE a code_verifier is generated along with a code_challenge.… keep reading
The Microsoft Authentication Libraries (MSAL) became generally available in May 2019 after a very long preview cycle whilst the libraries evolved to reach parity with its predecessor the Azure Active Directory Authentication Libraries (ADAL).
I’ve written many posts on using the Microsoft authentication libraries with PowerShell and Python for Azure Active Directory / Microsoft Graph integration.… keep reading
UPDATE 13 July 2021: v1.1.5 is now available with a few enhancements and bug fixes.
I’ve just published v1.1.4 of the SailPoint IdentityNow PowerShell Module to both GitHub and the PowerShell Gallery. Release 1.1.4 of the SailPoint IdentityNow PowerShell Module is the result of considerable effort by myself and Sean McGovern.… keep reading
Accessing Microsoft Office365, the Azure Portal, and the plethora of services we integrate with Azure Active Directory is for the most part seamless, especially when you only need to access a single tenant. However, it is 2021, and collaboration across tenants is the new normal.… keep reading
The ability to customize Azure AD Login branding with company images has been around for many years. Recently though additional configuration options have become available. Specifically, the ability to provide Username hint and Sign-in page text. Having recently done a mock-up of this for an engagement there were a few items that I want to recall for the next time I need to do this.… keep reading
I’ve just published v1.0.6 of the SailPoint IdentityNow PowerShell Module to both GitHub and the PowerShell Gallery. The Version 1.0.6 SailPoint IdentityNow PowerShell Module is a major update as it removes the previous dependency on the PowerShell Community Extensions (PSCX) module that was previously being used for its’ cryptography functions.… keep reading
Updated: 4 July 2024 – JWTDetails updated to v1.0.3
Updated: 15 June 2020 – JWTDetails updated to v1.0.2
I’ve just published my first PowerShell Module to the PowerShell Gallery.… keep reading
Microsoft as part of the uplift in Authentication Methods capability have extended the Graph API to contain User Azure MFA information. My customers have been requesting MFA User Reporting data for some time. How many users are registered for Azure MFA?… keep reading
Log Analytics is a fantastic tool in the Azure Portal that provides the ability to query Azure Monitor events. It provides the ability to quickly create queries using KQL (Kusto Query Language). Once you’ve created the query however you may want to run that query through automation negating the need to use the Azure Portal every time you want to get the associated report data.… keep reading
Just over 18 months ago I wrote this post on using PowerShell and oAuth to access the Azure AD Reports API to retrieve MIM Hybrid Report data. This week I went to re-use that for Azure Password Reset Reporting and found out that the API had been deprecated.… keep reading