In Azure, we have “Virtual Network”, which is a software-defined network. With this network, you can do many things, including creating a Service Endpoint. A Service Endpoint allows you to extend y...

Did you know that you can use a central certificate for your Azure Application Gateway? You don’t need a Key Vault in every subscription—you can use a central Key Vault in a central subscription an...

Azure PostgreSQL Flexible Server is a fully managed database service that allows you to run, manage, and scale PostgreSQL databases in the cloud. It provides built-in high availability, automated b...

Where are they use SP? Everywhere! :) Okay, maybe not everywhere, but everybody limit the users with conditional access, request MFA, check risky sign-ins, etc. But what about the service principal...

When working with Azure Policy, you may notice that some policies seem slow. However, Azure Policy itself is not slow; rather, some settings—mostly in built-in policies—force a 10-minute wait. Some...

Application Gateway is a good solution to publish your web applications, but we should always use Web Application Firewall (WAF) to protect our applications. This Kusto Query Language (KQL) query h...

Azure Policy is a powerful tool for enforcing rules and managing resources in your Azure environment. It helps ensure that your resources comply with organizational standards and best practices. To...

In cloud environments, private endpoints are often used to connect to services securely and privately. While this is a powerful feature, like any tool, it can become a threat if you don’t fully und...

Continuing the previous post, where I showed how to check the local Administrators group on Windows clients with Intune, now I will show another way to do that with Microsoft Defender. This method ...

The client Administrators group is a local group on Windows clients that grants administrative rights to users. This group is essential for managing Windows clients, as it allows users to install s...