Azure Security Center (ASC) is the center of many security-related features that are present within Azure. You can gain insight into the security status of your environment from 1 portal. Think of, for example, continuous assessments, regulatory compliance, security alerts, … Read More
Token expiration and refresh is a standard authentication mechanism and widely used across the industry. When a client application (like Teams) connects to a service (like SharePoint Online), the API requests are authorized using OAuth 2.0 access tokens. By default, … Read More
When a user is added within Azure AD, they are automatically assigned a certain permission set. There is a difference in the origin of the user here. There are 2 options: A user from your own organization (from the same … Read More
Security Center periodically analyzes the security state of your Azure resources to identify potential security vulnerabilities. It then provides you with recommendations on how to remediate those vulnerabilities. Recommendations are actions for you to take in order to secure your resources. … Read More
With the recent Azure Security Center updates from September, it now has the ability to help prevent misconfigurations of new resources with regard to specific recommendations. This feature can help keep your workloads secure and stabilize your secure score. Enforcing … Read More
With the recent Azure Security Center updates from September, the options for setting up alert notifications have been expanded. See below what has been added. The ability to notify users with the following RBAC roles on the subscription: Owner Account … Read More
In the days of the Azure Classic Deployment model, management certificates were the only method for automated applications and deployment. In recent years, various alternatives have been added, including Service Principals. Subscription management certificates allow you to authenticate with the … Read More
With privileged access groups, an extra privileged identity management (PIM) functionality has recently been added. It allows you to make individuals or groups eligible for group membership and ownership, as opposed to permanent allocations.Because you can link different privileged identity … Read More
It has recently become possible with Azure AD role-assignable groups (in addition to assigning an Azure AD role to a user) to be able to assign roles to an Azure AD group. This allows you to keep an overview because … Read More
What matters: Short and Personal Blog