A couple weeks back during the Microsoft Security Insights Podcast, the topic of Azure Arc came up in reference to the new AMA client that uses DCRs to help filter the Windows events collected from on-prem servers and sent to the Log Analytics workspace for Azure Sentinel. At the time, I suggested Thomas Maurer would … Continue reading July 14: Thomas Maurer on Azure Arc for the Microsoft Security Insights Podcast and Twitch Stream
Microsoft Defender for Identity (MDI) can be easily integrated with your Syslog server. You can be notified of new suspicious activities by sending security and health alerts to your Syslog server.
I have just posted my video that discusses Endpoint Analytics and how to configure it via Intune and ConfigMgr and also explores the kind of data that is at your fingertips after a very easy enablement process. here is a link to the video, Enjoy!
I have just posted my video series focusing on integration between ConfigMgr and Endpoint Protection. The link to the full playlist is here and a description of each video in the series is below. Enjoy! Microsoft Endpoint Manager - Configuration Manager - Endpoint Protection - Part I - IntroductionThe session is part I of a series … Continue reading Microsoft Endpoint Manager – ConfigMgr – Endpoint Protection
Overview: ABAC - Attribute-based access control is an authorization system which defines access based on attributes associated with security principals, resources, and environment. ABAC builds on Azure RBAC by adding role assignment conditions based on attributes in the context of specific actions. How does it differentiate from Azure RBAC: Role-based access control - RBAC is … Continue reading Azure ABAC and it’s features
I have just posted my video series focusing on integration between Intune and Endpoint Protection. The link to the full playlist is here and a description of each video in the series is below. Enjoy!Microsoft Endpoint Manager - Intune - Endpoint Protection - Part I - IntroductionThe session is part I of a series focused on Endpoint … Continue reading Microsoft Endpoint Manager – Intune – Endpoint Protection
Hey everyone, Theron (aka T-) here, Senior Consultant with Microsoft Consulting Services (MCS), deeply involved in a project to configure Intune for managing AADJ laptops with a Federal customer’s use. Been working a lot lately with 'hardening' the laptops following DISA STIGs. As a result I've developed a few Intune CSPs and security baselines to … Continue reading Microsoft Intune CSP for Google Chrome DISA STIG
Nowadays, CI/CD are embedded in almost every modern software solution which brings lots of benefits of course. However, sometimes you may need to skip CI/CD steps just to try something directly on one of your environments. In such cases, you may not be interested in things like (unit testing, security testing, resources creation, full deployment, … Continue reading How to Drag-n-Drop hotfixes with Kudu
Overview: Automanage is the latest approach of managing your virtual machines with optimized, automated operations across the entire VM lifecycle. This is a service that eliminates the need to discover, know how to onboard, and how to configure certain services in Azure that would benefit your virtual machine. Major Benefits: The major benefits of using … Continue reading Azure Automanage – Simplify and optimize IT management with automated operations
This example will show a way to customize monitoring of SQL servers for database free space on VM's in Azure. Note this is example will be with VM's hosted on Azure. If you want to simulate with on prem servers see hybrid runbook worker overview: Azure Automation Hybrid Runbook Worker overview | Microsoft Docs First … Continue reading Monitor SQL Database Free space