Number matching is a key security upgrade to traditional second factor notifications in Microsoft Authenticator. Microsoft will remove the admin controls and enforce the number match experience tenant-wide for all users starting February 27, 2023.
If you recently deployed Microsoft Defender for Identity on your Domain Controllers and haven't gone through all the prerequisites, you may find that you receive health alerts indicating NTLM Auditing is not enabled. You can also enable NTLM Auditing on your Domain Controllers if you are planning to deploy Microsoft Defender for Identity.
Welcome to the SOCAutomator's blog. Mike and I are here to talk about the importance of automation in incident response. We'll talk about the theory of automation as well as practical examples of how you can apply automation to your environment. Your first question might be "Why should I automate?" There are many answers to … Continue reading Welcome to…
Recently, I was asked about our strategy around providing controls to Azure Lighthouse, and it's ability to DRM external users from external tenants or subscriptions, and guest them into a production or customer owned tenant, providing a significant data exfiltration risk where a malicious, or unaware privileged user could cause a serious security incident. A … Continue reading Azure Lighthouse DRM Controls with Microsoft Sentinel
In this article I want to talk about how Azure Spot Instances can save you money on your Virtual Machines. These virtual machines are categorized as Infrastructure as a Service (IaaS). I recently received a new subscription and had to rebuild my infrastructure from scratch. At the moment I have four Active Directory Domain Controllers, … Continue reading Save Azure costs using Spot Instances
This is a short blog showing how to disable Server Manager from automatically starting up at logon.
If you want KQL queries to monitor general Azure services, there's actually a pretty easy, quick way to build them. This is not a hidden feature, by any means, but probably (for some of you) something that you've overlooked hundreds of times. In the Azure portal, when you access a number of Azure services, there's … Continue reading Easy Way to Build KQL Query Templates for Azure Services
Microsoft recently made enrollment notifications available as a Public Preview in Intune. You can create custom notification messages as push notifications and/or email notification when a user enrolls a new device and include information in the notification about how to report an unrecognized device. Note. Push notifications will appear in the Company Portal and email … Continue reading Set up enrollment notifications
In May 2019, then-United States President Donald Trump announced that Huawei, along with several other Chinese companies, was now on something called the Entity List. Companies on this list are unable to do business with any organization that operates in the United States. This made the lives of administrators difficult, to ensure that these devices … Continue reading How to Enroll a Huawei Device in Intune
This post was originally published on bitoftech.net by Taiseer Joudeh There is no doubt that building containerized applications and following microservices architecture is one of the most common software architecture patterns observed in the past couple of years. Microsoft Azure offers different services to package, deploy and manage cloud-native applications, each of which serves a … Continue reading Building Microservices Apps with Azure Container Apps and Dapr