Where are they use SP? Everywhere! :) Okay, maybe not everywhere, but everybody limit the users with conditional access, request MFA, check risky sign-ins, etc. But what about the service principal...

When working with Azure Policy, you may notice that some policies seem slow. However, Azure Policy itself is not slow; rather, some settings—mostly in built-in policies—force a 10-minute wait. Some...

Application Gateway is a good solution to publish your web applications, but we should always use Web Application Firewall (WAF) to protect our applications. This Kusto Query Language (KQL) query h...

Azure Policy is a powerful tool for enforcing rules and managing resources in your Azure environment. It helps ensure that your resources comply with organizational standards and best practices. To...

In cloud environments, private endpoints are often used to connect to services securely and privately. While this is a powerful feature, like any tool, it can become a threat if you don’t fully und...

Continuing the previous post, where I showed how to check the local Administrators group on Windows clients with Intune, now I will show another way to do that with Microsoft Defender. This method ...

The client Administrators group is a local group on Windows clients that grants administrative rights to users. This group is essential for managing Windows clients, as it allows users to install s...

Sometimes, you need to merge an on-premises user with a cloud-only user. This situation often arises in small or medium-sized companies. They may have initially adopted cloud services, such as mail...

The permission democratization is a great things, but it can also be a security risk if not used properly. You can disable self-service purchase for Microsoft 365 Copilot to prevent users from purc...

Until we deal with IT security, we have to restrict the use of Recall in Windows 11 24H2. Microsoft designed Recall to act as a photographic memory for your PC, more here: Recall. Recall is a featu...