A PowerShell script to identify and remove stale Azure AD role assignments where the associated identity no longer exists, helping clean up access control lists.
Fixes a Graph API error when querying user licenses with Get-MgUser by setting the ConsistencyLevel header.
Explains why Azure AD's 'Nudge' campaign fails to prompt users to register the Microsoft Authenticator app, often due to conflicting Conditional Access policies.
A guide to fixing SSH private key permission errors on Windows using PowerShell, avoiding the complex manual file security settings.
A guide on sending emails using Microsoft Graph API with .NET, covering setup, permissions, and use cases.
Guide to implementing Azure AD JWT authentication and authorization using middleware in .NET isolated process Azure Functions.
Microsoft's guide to nudging users towards the more secure Microsoft Authenticator app for MFA instead of SMS/OTP, using Azure policies.
Explains the security principle of Separation of Privilege in IT systems, using examples from SQL Server, OpenSSH, and Azure AD MFA.
A technical guide exploring the new 'Temporary Access Pass' feature in Azure AD for passwordless onboarding and MFA recovery.
Introduces CrowdStrike's CRT, a free GitHub tool for auditing Azure AD security post-Solorigate, detailing its features and prerequisites.
An update on Azure AD v2 endpoint and MSAL library changes in 2020, covering app registration, platforms, and authentication flows.
Summary of key Azure Blob Storage announcements from Microsoft Build 2020, including new features like User Delegation SAS Tokens and Geo-Zone-Redundant Storage.
A script to automate inviting external users to an Azure Machine Learning Workspace using RBAC for collaborative workshops.
Explains why developers should avoid building custom authentication and use Identity-as-a-Service providers for security and efficiency.
Tips for securing a remote workforce using Microsoft cloud tools like Azure AD, MFA, and Conditional Access.
A technical guide on setting up Azure Pipelines to run integration tests for Azure AD-protected APIs, including service principal creation.
Guide to setting up a GitHub Actions CI workflow for automated testing of Azure AD-protected APIs, including Azure Key Vault integration.
Guide to creating automated integration tests for Azure AD-protected APIs using XUnit, covering authentication strategies and implementation.
A guide on testing Azure AD-protected APIs using Postman, focusing on client credentials and application permissions.
A guide to configuring Swagger UI for testing Azure AD-protected APIs, using an ASP.NET Core 3.0 sample application.
