Browsed by
Tag: Azure Active Directory

How to deploy an Always On VPN to Azure VPN Gateway with Conditional Access

How to deploy an Always On VPN to Azure VPN Gateway with Conditional Access

Comments 20 comments

In a previous blog post, I’ve published a way to configure and deploy an Always On VPN on Intune-manage devices, connecting to an Azure VPN Gateway. The goal was to achieve an Always On VPN deployment with cloud-native solutions more easily than it would be using their traditional counterparts. However, the solution presented was with the use of self-signed certificates, which generally should not be used from a security point of view. I was triggered by a comment from one…

Read More Read More

Why it is important to block access to Azure AD PowerShell

Why it is important to block access to Azure AD PowerShell

Comments 2 comments

In one of my recent blogs, I’ve published a tool to use Intune as your e-mail signature manager for Outlook. This tool uses the AzureAD PowerShell module. Leveraging Single Sign On (SSO) on Azure AD joined devices, it queries for the user’s contact information of the user that’s signed in on the device. In doing so, I found that, as a non-administrative user, I was also able to query the contact information of all other users. Dumping the Azure AD…

Read More Read More

Serverless LAPS powered by Microsoft Intune, Azure Functions and Azure Key Vault!

Serverless LAPS powered by Microsoft Intune, Azure Functions and Azure Key Vault!

Comments 60 comments

UPDATE 25 August 2021 Please note that this blog post dates from 2018 and there have been major updates to the Azure components used in this solution. Currently more up-to-date and enhanced community tools are also available. I would suggest looking into CloudLAPS by @NickolajA Original content I’m excited to introduce a Serverless Local Administrator Password Solution (SLAPS 😉) for Windows 10 Intune Managed devices, powered by Microsoft Intune PowerShell scripts, Azure Functions and Azure Key Vault. Building this solution has been quite…

Read More Read More

Invite guest users with PowerShell using a custom email template

Invite guest users with PowerShell using a custom email template

Comments 0 Comment

There are many ways to invite guest users to your Azure Active Directory. For example directly from the Azure Portal or by adding a guest to Microsoft Teams, if you have guest access enabled. When you invite a new guest user directly from the Azure Portal, the invitee will receive an email invitation that looks like this: Most of your users probably don’t even know what Azure Active Directory is. It could be that you are trying to educate your…

Read More Read More