Finding Stale Azure AD B2B Guest Accounts based on lastSignInDateTime

Collaboration between Azure Active Directory tenants typically involves Azure AD Guest accounts. After a few years, the proliferation of ‘Guest’ accounts usually becomes a focus, especially for larger tenants. As Azure AD has matured the meta data associated with accounts, along with Microsoft Graph improvements is making it easier to define and locate stale Azure AD B2B Guest Accounts.… keep reading

Microsoft Identity Manager Graph Connector stopped-extensible-extension-error

Graph Connector Delta Token Expired over 30 Days

Running a Delta Import on the Microsoft Identity Manager Graph Connector returns stopped-extensible-extension-error .

Looking into the Application Event Log we initially see BadRequest.

Graph Connector Delta Token Expired

Digging deeper we find DeltaLink older than 30 days is not supported.

Graph Connector Delta Token Expired over 30 Days.PNG

In this particular case the Microsoft Graph Connector for Microsoft Identity Manager has not run in over 30 days and the Differential Query DeltaLink cookie that I detailed in this post and this post has expired.… keep reading

Microsoft Build – ‘Build apps that integrate, automate, and manage security operations’ Presentation

User Secure Score Risk Profile - 640px

At Microsoft Build last week I was honoured to co-present the Build apps that integrate, automate, and manage security operations” session on the Microsoft Security Graph with Preeti Krishna and Sarah Fender

The session was recorded and is available here

The PowerPoint presentation itself is here BUILD19_SecurityDeveloperPlatform

I provided a demo of my Microsoft U.S.E.Rkeep reading