Microsoft offers several solutions and services for securing (hybrid) identities and protecting access to workloads such as Azure, Office 365 or other integrated apps in...
Azure Privileged Identity Management (PIM) allows to assign eligibility for membership as part of “Privileged Access Groups” (PAG). In this blog post I like to...
macOS Keychain items from Microsoft products AAD Authenticated Edge Profile and Keychain Microsoft Bing Search and Family Refresh Token Primary Refresh Token (PRT) on macOS? Security considerations on cached tokens...
GitHub Enterprise is more than a platform to manage developer’s code in a repository. It will be also used to automate deployment of cloud resources and manage “infrastructure-as-code” or even...
AADOps is a personal study and research project which sets out to demonstrate how “operationalization” of Azure AD in Azure DevOps could look like. In this blog post, I’ve set...
Cloud Managed Service Providers and many other organizations are mostly interested to manage their environment(s) “as code” which enables advanced automation and scaling options. For some time, improvements in programmatic...
FIDO2 Security Keys are a passwordless and strong authentication method to sign-in to Windows devices and can be used for single sign-on (SSO) access to cloud and on-premises resources. This...
Microsoft has announced the GA of FIDO2 support in Azure AD at Ignite Spring 2021. Previously, passwordless authentication in hybrid environments was only possible by implementing Windows Hello for Business...
