(Cloud) Tip of the Day: Azure AD Pass-through Authentication

Today’s Tip… Released to public preview on December 6, Azure AD pass-through authentication provides password validation for Azure AD services is performed against on-premises Active Directory, without the need for complex network infrastructure or for the on-premises passwords to exist in the cloud in any form. When combined with Single Sign on (public preview), users…

0

(Cloud) Tip of the Day: Azure AD PowerShell v2.0 update

Today’s Tip… There is a huge update to Azure AD PowerShell. Check out the official announcement here: https://blogs.technet.microsoft.com/enterprisemobility/2016/11/03/new-enhancements-to-the-azuread-powershell-2-0-preview-manage-dynamic-groups-and-more/   To get Azure AD PowerShell v2.0, download it from here: http://www.powershellgallery.com/packages/AzureADPreview   Just to name a few of the cool updates: Manage dynamic groups and its processing state Create Office 365 groups Revoke user’s refresh token…

0

(Cloud) Tip of the Day: Configurable Token Lifetimes

Today’s Tip… Released to GA on January 6th, Configurable Token Lifetimes allow an Administrator or Developer to specify the lifetimes of tokens issued by Azure AD. Token lifetimes can be configured for all apps in an organization, for a multi-tenant (multi-organization) application, or for a specific Service Principal in an organization. For more information review…

0

(Cloud) Tip of the Day: Certificate Based Authentication

Today’s Tip… Certificate Based Authentication, released to GA on December 14th, enables Users to be authenticated by Azure Active Directory with a client certificate on an Android or iOS device when connecting their Exchange online account to: Office mobile applications such as Microsoft Outlook and Microsoft Word Exchange ActiveSync (EAS) clients Configuring this feature eliminates…

0

(Cloud) Tip of the Day: Promote Azure AD guest user to member

Today’s Tip… Use Azure AD PowerShell to promote Azure AD guest users to a member. To do this, run the following similar cmdlet… Set-MsolUser -UserPrincipalName john@contoso.com -UserType Member This could be useful to assign an administrative role to the user since administrative roles can only be assigned to members of the directory and not to…

0

(Cloud) Tip of the Day: Assign DC for AAD Connect Password Writeback/Sync

Today’s Tip… You can configure Azure AD Connect to use a specific Domain Controller for password sync and password writeback. To do this, perform the following steps… On the machine where Azure AD Connect is installed: Go to Start, look for and open “synchronization service”. Go to “Connectors” and look for AD. Select it and…

0

(Cloud) Tip of the Day: Pragmatically apply Azure AD Connect permissions

Today’s Tip… I ran across this article that describes how you can pragmatically apply Azure AD Connect permissions for the following scenarios… Exchange Hybrid Deployment Password Synchronization Password Write-back Read more about it here… https://blog.kloud.com.au/2014/12/18/aadsync-ad-service-account-delegated-permissions/

0

(Cloud) Tip of the Day: Azure AD Connect Health for Windows Server AD

Today’s Tip… Azure AD Connect Health for Windows Server AD has just been recently released. Azure AD Connect Health for Windows Server AD monitors your on-premises Active Directory and bubbles up critical issues to you in a easy to view dashboard. Read more about it in the official announcement here… https://blogs.technet.microsoft.com/enterprisemobility/2016/07/19/introducing-azuread-connect-health-for-windows-server-ad/

0

(Cloud) Tip of the Day: Default claims sent by AAD for integrated apps

Today’s Tip… I ran across this article which describes the default claims sent by Azure AD for apps that are integrated with Azure AD and how you can edit those claims or create additional claims. Check out the details here… https://azure.microsoft.com/en-us/documentation/articles/active-directory-saml-claims-customization/

0