title: “Restrict MFA registration to compliant devices — Entra Conditional Access” author: gudszent date: 2026-01-20 08:00:00 +0200 categories: [Azure, Identity, Security] tags: [Entra, Conditional...

I always have to start with a quick recap when discussing Entra device join types with colleagues or customers, so I decided to write it down as a blog post for future reference. This article comp...

Because I had to travel a lot recently, I spent weeks using Global Secure Access (GSA) on my MacBook. GSA is Microsoft’s take on Zero Trust networking: instead of extending your internal network wi...

After weeks of AI-this and Copilot-that, let’s talk about something foundational: DNS. Yes, the thing that’s been quietly routing your internet traffic since 1985. And now, Microsoft has a Zero Tru...

We have officially moved past the “Chat with your data” phase. Microsoft’s latest announcements for late 2025 make it clear: AI is no longer just a sidebar helper; it’s becoming the engine room. Bu...

It’s late 2025, and if you thought your home Wi-Fi was struggling with 4K streaming, imagine what an AI supercomputer feels like. 🤯 Microsoft just dropped their “Year in Review” for Azure Networki...

Remember the “good old days” of VPNs? You connect, and suddenly you have network visibility to the printer on the 4th floor, the coffee machine IoT controls, and that one server from 2003 nobody da...

Microsoft recently introduced a cool feature in Security Copilot that helps you deploy Conditional Access (CA) policies without the usual heart palpitations: Phased Rollout. If you’ve ever pushed ...

AI AI AI AI AI… So somehow we have to control these where, agents play a critical role in automating tasks, processing data, and interacting with systems. However, these non-human identities often ...

I know my Azure Local setup not a supported configuration, but for homelab and testing purposes it works fine for me. When I try to update it, the update check show some error with NetworkIntent. S...