Skip to content

Category: Active Directory

Conditional Access policy for Guest and External Accounts

Conditional Access policy for Guest and External Accounts In post, I will go through the steps of setting up a Conditional Access Policy which will enforce MFA for Guest and External Accounts. This will add another layer of protection if guest account credentials were compromised. To get started we need to sign into the Azure…

Leave a Comment

Securing Azure Active Directory from PowerShell abuse

Securing Azure Active Directory from PowerShell abuse Malware attacks are evolving and once common tactics are becoming a thing of the past. Attack strategies, like using a third-party hacking program or injecting viruses from external sources, are almost obsolete as they leave a distinct footprint. Most antimalware tools can now detect the presence of a…

Leave a Comment

Copy Active Directory Group Members Script

Copy Active Directory Group Membership Script The following Script Copies members from one Active Directory Group to another Active Directory Group. To start the Script run: .\CopyGroupMembership.ps1 You will be prompted to enter the Group whose membership you need to copy. The you will be prompted to add the group name where you want to…

Leave a Comment

Let users rest their Passwords in Office 365

Let users rest their Passwords in Office 365 Office 365 and Azure AD allows users to reset their own passwords, this reduces the calls to helpdesk for password resets. Once you enable this setting users will be able to navigate to https://passwordreset.microsoftonline.com/ and reset their own passwords. To get started Launch the Office 365 Admin…

Leave a Comment

Configure Azure AD Connect Pass Through Authentication

Configure Azure AD Connect Pass Through Authentication Azure pass-through authentication allows user to login to cloud and on-premise applications by using the same passwords. Pass-through authentication validated the password against the on-premise active directory. Prerequisite needed: Global Admin account Azure AD Connect 1.1.750.0 or later Windows Server 2012 R2 or later with TLS 1.2 enabled…

Leave a Comment

Enable MFA for All Office 365 Users using Azure Active Directory Identity Protection.

Enable MFA for All Office 365 Users using Azure Active Directory Identity Protection. “Azure Active Directory Identity Protection provides a consolidated view of at risk users, risk events and vulnerabilities, with the ability to remediate risk immediately, and set policies to auto-remediate future events. The service is built on Microsoft’s experience protecting consumer identities and…

Leave a Comment

Get-AzureADDirectorySettingTemplate : The term ‘Get-AzureADDirectorySettingTemplate’ is not recognized.

Get-AzureADDirectorySettingTemplate : The term ‘Get-AzureADDirectorySettingTemplate’ is not recognized. You receive the following error when trying to execute the following cmdlet: Get-AzureADDirectorySettingTemplate. To resolve this error, you need to install the following PowerShell Module AzureADPreview. But you will find that users have installed the PowerShell Module AzureAD and this Module does not have the cmdlets for…

2 Comments