Proxmox in Enterprises: I'm often asked, 'Can we use our Active Directory, LDAP, or OIDC with Proxmox?' Yes, you can!
Let's have quick dive into installing and configuring Authentik and configure Proxmox VE to use OIDC as an additional authentication realm.
#Proxmox #ProxmoxVE #opensource #Authentik #OpenID #OpenIDConnect #OIDC #EntraID #enterprise #homelab
https://gyptazy.com/proxmox-authentik-oidc-install-configure-and-connect-authentik-to-proxmox-ve/
An Account Blocked by MACE Credential Revocation is A Good Way to Start a Saturday Morning
The last thing you want on a Saturday morning is to find that Entra ID has blocked your account because of leaked credentials. Even though the account is protected by MFA, it’s still important to remediate the event by changing its password. A check against some beta sign-in metrics shows that no one has tried to use the leaked credentials, so that’s good.
https://office365itpros.com/2025/04/21/leaked-credentials-sign-in-metrics/
#EntraID #Microsoft365
Practical Graph: Nag Users to Upgrade to a Strong Authentication Method
Convincing people to use MFA is one challenge. Convincing them to use a stronger authentication method than SMS is another. This article explains how to use PowerShell to find people still using SMS for MFA and send email to ask them to upgrade their authentication method.
https://practical365.com/upgrade-stronger-authentication-method-mfa/
#Microsoft365 #EntraID
How to Use Bulk User Operations in Entra Admin Center
A new preview option in the Entra admin center supports the ability to update multiple Entra ID accounts. You can update properties, add managers and sponsors, update group membership, revoke account access, and so on. The only surprising thing about the new option is that it’s taken Microsoft so long to add it to the admin center.
https://office365itpros.com/2025/02/12/update-multiple-entra-id-accounts/
#Microsoft365 #EntraID
Studie: Unternehmen an Feiertagen und Wochenenden anfälliger für Cyberangriffe
Gerade an Wochenenden und Feiertagen erleben Unternehmen häufig Cyberangriffe. Das geht aus einer Befragung hervor.
Microsoft: We've expired all your logins, all at once, everywhere.
Please log in to everything once again.
Me: Grrrrr
I'm not at hacker summer camp this year. If you are like me and waiting for many of the great talks to come out, may I suggest you spend your time digging through the #EntraID Security Operations Guide. https://learn.microsoft.com/en-us/entra/architecture/security-operations-introduction. This has real world things that you should be monitoring for and taking action on. There is really a lot in here. Where possible we've included links directly to #microsoft #sentinel templates if you use that as your SIEM or to Sigma rules so you can convert it to your SIEM. #infosec
One of the most popular posts on my blog is an article about recommended conditional access policies in Microsoft Entra ID https://www.cswrld.com/2024/02/recommended-conditional-access-policies-in-microsoft-entra-id/
In this article, I describe the most important conditional access policies that every organization should have implemented.
I have received a lot of positive feedback on the article, for which I am very grateful! However, people also wrote that they would like more details about the configuration of each policy if possible, and that they would like more details about the configuration of other conditional access policies as well.
So I made a very detailed video of over an hour, describing in detail a total of 28 conditional access policies that I recommend to consider deploying in all organizations, regardless of their size.
Cloud identity security is absolutely critical, and unfortunately I regularly see security gaps in conditional access policies.
Watch the recording on my Patreon https://www.patreon.com/posts/recommended-in-105019232?utm_medium=clipboard_copy&utm_source=copyLink&utm_campaign=postshare_creator&utm_content=join_link
The recording is also available in Czech language on
Forendors https://www.forendors.cz/p/d4210cfb79de8b0c2cdfcfd4c3a7b5b2
Herohero https://herohero.co/cswrld/post/bceroxowdykkdsviexrujbiknuqywrxa
Share, like, comment!
Hey folks, the first draft of the #kql book is nearly done. We’ve put a ton of time into this and we got some really nice bonuses throughout. We’ve been talking to lots of different teams at #Microsoft and getting recommended operational and security #kql queries you should be running in your environment for a bunch of areas. If you’re using #entraid #Microsoft365 or #Azure you’ll get something out of it. The book is up on Amazon now https://www.amazon.com/Definitive-Guide-Kql-Operations-Defending/dp/0138293384?&linkCode=sl1&tag=buzzmanagement&linkId=e975cc8d41fb9e856d34192c5f24c708&language=en_US&ref_=as_li_ss_tl and will be on the MS Press store in about a month. Really looking forward to getting this out there for everyone.
Gestohlener Microsoft-Schlüssel stammte aus einem Crash-Dump
Angreifer konnten mit gestohlenem Schlüssel weitreichend auf Cloud-Ressourcen von Microsoft zugreifen. Der Schlüssel kam wohl aus einem Crash-Dump.
#Microsoft announced today that it would change the name of its #Azure #ActiveDirectory (#AzureAD) enterprise identity service to Microsoft #EntraID by the end of the year.
#Entra Internet Access is used to secure public-facing web services, allowing admins to restrict visitors through Conditional Access. Entra Private Access is #VPN-like service that allows remote access to internal, private #corporate resources.
https://www.bleepingcomputer.com/news/microsoft/microsoft-rebrands-azure-active-directory-to-microsoft-entra-id/
