Using Time-Based One-Time Passwords for Multi-Factor Authentication in AD FS 3.0

I often get the question if it is possible in AD FS 3.0 to use the Google Authenticator as the second factor for authentication. When we read the documentation for the Google Authenticator, we find that this product is actually based on two RFC's. One of these is RFC6238; a Time-Based One-Time Password (TOTP) Algorithm. This…

5

Microsoft Azure: Connecting multiple VNET's to a VNET.

Introduction Recently, Microsoft has introduced a new feature in Microsoft Azure to allow a direct VPN connection between multiple Virtual Networks (VNets). In this blog post I will explain how to connect multiple VNets to each other within Microsoft Azure. A good starting point to read more on how to configure a connection between two…

9

Pre-Provisioning Microsoft Azure Multi-Factor Authentication for Users

If you enable or enforce Azure Multi-Factor Authentication for your users, you will most likely have seen the wizard that user goes through in order to properly provision Multi-Factor Authentication for their account. As an administrator, you might want to ease this process to the end-user and pre-provision Multi-Factor Authentication in Microsoft Azure Active Directory….

0

Using Windows Azure Active Directory as an Attribute Store in AD FS

More and more of our customers are unleashing the power of Windows Azure Active Directory. This Enterprise-level identity and access management for the cloud is so powerful that most like, I'll be creating more articles on this subject. When you add Azure Active Directory as an Identity Provider, or Claims Provider, in Active Directory Federation…

2

How to create a Custom Authentication Provider for Active Directory Federation Services on Windows Server 2012 R2 – Part 5

In this series of five blog posts I want to show you how you can create your own Authentication Provider in AD FS on Windows Server 2012 R2. This Authentication Provider can then be used in AD FS for multi-factor authentication (MFA). The solution will use the users mobile device as a second factor for authentication,…

5

How to create a Custom Authentication Provider for Active Directory Federation Services on Windows Server 2012 R2 – Part 4

In this series of five blog posts I want to show you how you can create your own Authentication Provider in AD FS on Windows Server 2012 R2. This Authentication Provider can then be used in AD FS for multi-factor authentication (MFA). The solution will use the users mobile device as a second factor for authentication,…

4

How to create a Custom Authentication Provider for Active Directory Federation Services on Windows Server 2012 R2 – Part 3

In this series of five blog posts I want to show you how you can create your own Authentication Provider in AD FS on Windows Server 2012 R2. This Authentication Provider can then be used in AD FS for multi-factor authentication (MFA). The solution will use the users mobile device as a second factor for authentication,…

4

How to create a Custom Authentication Provider for Active Directory Federation Services on Windows Server 2012 R2 – Part 2

In this series of five blog posts I want to show you how you can create your own Authentication Provider in AD FS on Windows Server 2012 R2. This Authentication Provider can then be used in AD FS for multi-factor authentication (MFA). The solution will use the users mobile device as a second factor for authentication,…

36

How to create a Custom Authentication Provider for Active Directory Federation Services on Windows Server 2012 R2 – Part 1

In this series of five blog posts I want to show you how you can create your own Authentication Provider in AD FS on Windows Server 2012 R2. This Authentication Provider can then be used in AD FS for multi-factor authentication (MFA). The solution will use the users mobile device as a second factor for authentication,…

7

How to change Office 365 licenses in bulk, respecting the License Options.

Suppose your organization has been using Office 365 for some time now, using Office 365 Enterprise E1 licenses, and you company decides to purchase new Office 365 Enterprise E3 licenses. You are now in charge of changing the user license for each licensed user, whilst respecting the former License Options defined. This should be something that…

2