Browsing: Identity and Access

Identity and Access

Microsoft has released a few new Administrator roles in Azure AD, one of them is the Authentication Administrator, that allows delegation of MFA reset in Azure Active Directory without building custom solutions.The Authentication Administrator roles is allowed to view, set and reset authentication method information for any non-admin user.Authentication Administrators can require users to re-register against existing non-password credential (for example, MFA or FIDO) and revoke “remember MFA on the device”, which prompts for MFA on the next sign-in.More information: https://docs.microsoft.com/en-us/azure/active-directory/users-groups-roles/directory-assign-admin-roles#authentication-administrator/Enjoy+Ronni Pedersen

The Nordic Infrastructure Conference (NIC) in Oslo, Norway is one of my favorite conferences of the year! NIC is great a collaboration and learning event offering global best in class content and structure. The key concept of the conference: Less slides, more demos!The speaker list is pretty awesome, and it’s perfect mix with lots of international top speakers, Microsoft MVP’s and Community Experts!Check out the full speaker list: https://www.nicconf.com/speakers-at-nic19/I have the great pleasure myself to be delivering two sessions this year. The first one is about Protecting identities and data in the Microsoft cloud, using built-in Microsoft 365 technologies like…

Two weeks ago, at Microsoft Ignite in Orlando, Microsoft announced the public preview of Password-less phone sign-in. We enabled this feature right after the session in our company tenant, and we have all been super excited about this cool way of signing in. One big step closer to a more secure and password less world. This blog post will explain how to configure password-less phone sign-in and how to enable this feature for your users. Please note that this is still a pre-release feature. Prepare the Tenant First we need to install the latest version the of Azure Active Directory…

Over the years, I’ve created multiple labs, so that I can test different scenarios. One of my first “cloud only” Azure AD labs was created back in 2012. Two weeks ago, I wanted to use this lab to test a new Conditional Access scenario that one of my customers needed.Long time ago, I also created an “All Users” group, that was based on direct membership, so I thought it was a good idea to replace that group with a new and “shiny” dynamic group based on the “UserType” attribute.So, I created the following group, and started to redeploy all my…

Right now, I’m sitting in a Lufthansa Airbus A380 somewhere over the Atlantic ocean. Next week, I’ll be attending the Microsoft Ignite 2017 event in Orlando, to get some insights to the latest updates and strategies from Microsoft. So why not spend the time writing this blog post! Next month I’ve been invited to present at the Lowlands Unite event in Belgium. The Lowlands Unite events are joined user group events between the Belgium and the Dutch System Center User groups, and earlier this year I was invited to the Dutch edition in Amsterdam. The event in Amsterdam was a…

Today I had the honor to speak at the Azure Saturday event in Copenhagen. I’m really impressed with the quality and the list of international speakers are really impressive. Great job! My presentation was about Protecting Cloud Identities using EMS, Intune and Azure AD Premium features, and as promised during the session, here is a copy of the PowerPoint slides. Looking forward to be back next year! Azure saturday 2017 – Protecting cloud identities using emsfrom Ronni Pedersen      That’s it… Enjoy! +Ronni Pedersen

On Tuesday, August 15th, 2017 the Microsoft Tech Community will host an ‘Ask Microsoft Anything’ (AMA) from 9:00 a.m. to 10:00 a.m. PT in the Office 365 Admin AMA space. An AMA is a live online event similar to a “YamJam” on Yammer or an “Ask Me Anything” on Reddit.This AMA gives you the opportunity to connect with members of the product engineering team and who will be on hand to answer your questions and listen to feedback.As a Microsoft MVP in the Enterprise Mobility and Security area, I’ve been invited as a community expert to join the Office 365…

Introduction For most organizations, Office 365 (mailboxes) can contain both high business impact and personally identifiable information, so it’s important that we track who logs on to the mailboxes in the organization and what actions are taken. By default, mailbox auditing in Office 365 isn’t turned on, so this guide will help you to setup and verify mailbox auditing in Office 365. This guide will walk you through the following steps: Step 1: Connect to Exchange Online Step 2: Get the current state of audit logging Step 3: Enable mailbox audit logging Step 4: Set the age limit for mailbox…

I’m proud to announce that I’ve been invited to speaking about Protecting Cloud Identities using Azure MFA and EMS, at the Azure Saturday 2017 event in Copenhagen. Azure Saturday is a premium community driven event for Developers, IT-Pros and Cloud Architects. Check it out!Although it’s called Azure Saturday they could not pack all the content into one day, so the conference takes place on September 1st (Azure Friday) and September 2nd (Azure Saturday) and features both tech-talks and practical use-cases of Azure.Full Agenda : https://azuresaturday.dk/agenda/.Check out the the awesome speaker line-up: https://azuresaturday.dk/speakers/.More information and registration: https://azuresaturday.dk/.And don’t forget to follow…

As a Cloud Consultant working with products that are part of the Office 365 and the Microsoft Enterprise Mobility +Security Suite (EMS), I often get a lot of questions about multi-factor authentication (MFA), and how to get started. Most customers today has a strategy about MFA when employees are trying to access corporate company data from outside the company perimeter. But when customers are using cloud services like Office 365, OneDrive and SharePoint that boundary moves from a physical boundary to the user identity. Therefore the requirement for multi-factor authentication is something that most customers wants to implement as part…

1 2