Protect the network from Shadow IT oAuth
Good application tracking and hygiene is a critical part of security management and yet many businesses have missed these critical configurations and maintenance tasks
azure ad
19 posts
Where do you reset MFA for a user?
This is as much for me as it is for you, because I’m constantly forgetting where this is […]
Uninstall Fireflies.ai
The problem with OAuth apps is that they don't ever fully uninstall themselves. The permissions are left there forever, even after you close the account, just waiting for a hacker to figure out how to exploit. In this blog I'll show you what permissions are granted and how to remove them for M365 and Google users.
The invasive Otter
In today's meeting, a person I met with was sent a meeting recap from "me". Otter had joined a meeting that I was invited to and then emailed them that person a recap of our meeting. I was very disturbed by this event
Include IPv6 in Azure AD policies
Criminals of the world would love to know that they don't have to deal with MFA if they phish you while you're in the office. Now we've taken that option away
Conclusions from reading threat analyst reports
Despite criminal masterminds and "security researchers" always coming up with the next greatest tool for causing financial damage to our businesses and economy, there are patterns.
Ransomware prevention, not defense
Defense implies a reactionary approach. Prevention set the scene where ransomware can't get you in the first place.
How to prevent weak MFA session token theft
Microsoft recently published an analysis of the techniques used by one popular phishing-as-a-service provider. We'll take that analysis and implement a solution based upon it
Blocking malicious activity – too many email updates
I often get asked how we manage networks without an RMM tool and I always reply that we take full advantage and make use of what Microsoft has to offer. This type of rule is an example of that philosophy.
How to use the Azure AD conditional access templates
Finally, there is an easy way to deploy a base set of conditional access policies to users, devices and apps in a tenant. Microsoft calls it Conditional Access Templates and you will find them in Azure AD - Security - Conditional Access - Conditional Access Templates.
Migrate to the new MFA authentication policies
There’s mandatory migration underway from SSPR and MFA settings to policy and you have until later this month to get them into place voluntarily or Microsoft will do it for you
Onboarding a new user with a single word
I’m going to show you how adding a single word to a user’s profile in Azure Active Directory (Azure AD) can kick off an entire onboarding process and move user add/remove from an IT task into an administrative assistant task.