Cloud Identity Architect

WFH and Remote Access Security Risks

anuj October 21, 2024 WFH and Remote Access Security Risks2024-10-21T15:10:46+00:00 No Comment

Mitigation - Important multi-factor authentication automatic session timeouts and access monitoring Unauthorized access to devices Any machine that is capable of connecting to your network should be protected using multi-factor…

Work from Home – Laptop Options

anuj October 21, 2024 Work from Home – Laptop Options2024-10-21T15:10:17+00:00 Troubleshooting - network and identity No Comment

The VDI Option The simplest and most configurable. The VDI can also be domain joined to either the on premises Windows Server AD or to an Azure only AAD domain.…

Domain joining an Azure VDI to a corporate Windows Server AD

anuj October 15, 2024 Domain joining an Azure VDI to a corporate Windows Server AD2024-10-15T01:40:49+00:00 Active Directory (On Premises) No Comment

Can you domain join an Azure VDI to a corporate Windows AD? Yes. Windows Server Active Directory Domain Services (ADDS) which is synchronized with Azure Active Directory (AAD) using Azure…

Can you SSO into an API?

anuj October 7, 2024 Can you SSO into an API?2024-10-07T20:18:11+00:00 SSO

Yes - SSO to an API is possible using one of the following tools API Manager Supports SAML-based SSO, which allows users to log in to API Manager and other…

API authentication and OAuth

anuj October 7, 2024 API authentication and OAuth2024-10-07T16:21:20+00:00 OAuth 2.0

OAuth for API Authentication - Some Security Checks Limit SCOPE of OAuth token to READONLY Limit The duration - expiration of the Token to a short lived token Restrict the…

Microsoft Intune Device Management

anuj October 1, 2024 Microsoft Intune Device Management2024-11-01T14:11:34+00:00 Active Directory (On Premises)

Microsoft Intune and Azure Active Directory (Azure AD) are both services that help manage devices and users in an organization, but they have different functions: Azure AD A universal identity…

Azure AD – How many tenants?

anuj October 30, 2022 Azure AD – How many tenants?2023-02-18T15:05:38+00:00 Azure AD

Azure AD - How many tenants? A common question is - should we have a single tenant or more than one? The answer is straightforward Mandatory: There is always one directory…

Privileged Identities in Azure AD – Above Global administrators

anuj October 30, 2022 Privileged Identities in Azure AD – Above Global administrators2022-10-30T07:45:33+00:00 Azure AD

Privileged Identities in Azure AD With this option, you can build up an Role-based Access Control (RBAC) solution on top of Azure AD roles, as well as other Microsoft online services,…

OAuth 2.0 Basics – Client Credentials Flow

anuj January 31, 2022 OAuth 2.0 Basics – Client Credentials Flow2022-11-04T07:08:06+00:00 OAuth 2.0

What are client credentials in OAuth ? It is a string value that contains a token. The token is sufficient for a resource to allow access to. What is it…

JWT vs SSL

anuj August 30, 2021 JWT vs SSL2021-08-30T12:24:15+00:00 Transport Layer

The purpose of a JWT is NOT to encrypt data during transport (that’s SSL). JWT, using hashes, allows the receiving party to trust that the received data was not modified…

12 3 4 5