Azure Active Directory

Latest Articles

When You Should Disable Azure AD Security Defaults

Security Defaults is a control in Azure Active Directory which has been around since 2019 and is enabled by default on new tenants created after October 2019. Microsoft recently announced they will now start turning on Azure AD security defaults for existing tenants. Throughout this blog we will explore what this means and if Security Defaults is the right fit for your organization.

June 13, 2022

Microsoft Plans Big Security Improvement for Unprotected Office 365 Tenants

Microsoft plans to enable Azure AD Security Defaults for Office 365 tenants created prior to October 2019. The move will protect an additional 60 million Azure AD accounts against common attacks by enforcing MFA more broadly. It's a big deal in terms of improving the overall security posture of Office 365. If you don't want to use Security Defaults, tenant administrators can switch them off.

June 1, 2022

Three Steps to Securing Microsoft Teams

Any discussion about securing Microsoft Teams can rapidly descend into a detailed debate about different policy settings. But when you focus on what really needs to be done, it's all about making sure that user access is secure, external access is controlled, and individual teams are managed. Easy!

May 23, 2022

Using Cross-Tenant Access Settings for Azure B2B Collaboration

When Microsoft released cross-tenant access settings into preview, the natural focus was on how this capability enabled external access to Teams shared channels. However, the story is deeper because cross-tenant access settings are also available for Azure AD B2B Collaboration (aka guest user access). A different blocking mechanism is used and it delivers better results, once you're used to the new method.

April 18, 2022

Microsoft 365 License Management for User Accounts with the Microsoft Graph PowerShell SDK

MSOL and AzureAD license management cmdlets stop working at the end of March 2024. By then, Microsoft 365 will have switched to a new license management platform. The Microsoft Graph PowerShell SDK includes cmdlets which can replace the older code, once you know how. The good news is that this article is packed full of practical examples of how to add, remove, and update licenses assigned to Entra ID user accounts.

April 13, 2022

How to Create and Use Azure AD Cross Tenant Access Policies

Azure AD cross-tenant access settings or policies define how your tenant collaborates with other Microsoft 365 tenants. By default, collaboration using Azure B2B Direct Connect is disabled, so some work is needed to prepare for Teams shared channels. In this article, we look at how to set up cross-tenant policies to enable collaboration to begin using Teams shared channels.

April 7, 2022

Why Continuous Access Evaluation (CAE) for Azure AD Matters

Continuous access evaluation (CAE) is a feature that flew under the radar over the past two years. Even so, CAE for Azure Active Directory is an extremely important feature that will not only increase the security posture of your environment but reduce the amount of time before a user loses access to resources when certain critical events happen. This article discusses the need for the feature and how to work with it.

March 22, 2022

Creating New Microsoft 365 Accounts with PowerShell

It's common to find a requirement to create new Microsoft 365 accounts with PowerShell. We're at a point of transition when the old method of using the Azure AD module will switch to the Microsoft Graph PowerShell SDK or Graph API queries. In this article, we explain how to create new accounts and assign licenses with both the Azure AD module and the Microsoft Graph PowerShell SDK.

March 21, 2022