Fixes a Graph API error when querying user licenses with Get-MgUser by setting the ConsistencyLevel header.
Explains why Azure AD's 'Nudge' campaign fails to prompt users to register the Microsoft Authenticator app, often due to conflicting Conditional Access policies.
A guide to fixing SSH private key permission errors on Windows using PowerShell, avoiding the complex manual file security settings.
Guide to implementing Azure AD JWT authentication and authorization using middleware in .NET isolated process Azure Functions.
Microsoft's guide to nudging users towards the more secure Microsoft Authenticator app for MFA instead of SMS/OTP, using Azure policies.
Explains the security principle of Separation of Privilege in IT systems, using examples from SQL Server, OpenSSH, and Azure AD MFA.
A technical guide exploring the new 'Temporary Access Pass' feature in Azure AD for passwordless onboarding and MFA recovery.
Introduces CrowdStrike's CRT, a free GitHub tool for auditing Azure AD security post-Solorigate, detailing its features and prerequisites.
An update on Azure AD v2 endpoint and MSAL library changes in 2020, covering app registration, platforms, and authentication flows.
Summary of key Azure Blob Storage announcements from Microsoft Build 2020, including new features like User Delegation SAS Tokens and Geo-Zone-Redundant Storage.
A script to automate inviting external users to an Azure Machine Learning Workspace using RBAC for collaborative workshops.
A technical guide on setting up Azure Pipelines to run integration tests for Azure AD-protected APIs, including service principal creation.
Guide to setting up a GitHub Actions CI workflow for automated testing of Azure AD-protected APIs, including Azure Key Vault integration.
Guide to creating automated integration tests for Azure AD-protected APIs using XUnit, covering authentication strategies and implementation.
A guide on testing Azure AD-protected APIs using Postman, focusing on client credentials and application permissions.
A guide to configuring Swagger UI for testing Azure AD-protected APIs, using an ASP.NET Core 3.0 sample application.
Azure AD now blocks cross-tenant token attacks by preventing apps from getting tokens for tenants where they have no service principal.
Explains the importance of checking delegated and application permissions in Azure AD access tokens for API security, with ASP.NET Core examples.
Explains Azure AD Service Principals, their relationship to application objects, and how to create them for automation and permissions.
Guide on using a Service Principal for authentication with Power BI REST APIs and the PowerBIPS module, eliminating the need for a user account.
