Read my latests posts
-
Move on from Exchange Online SMTP Basic Authentication with Client Submission
Intro Link to full Microsoft article:https://techcommunity.microsoft.com/t5/exchange-team-blog/exchange-online-to-retire-basic-auth-for-client-submission-smtp/ba-p/4114750 Microsoft are closed one of the older legacy protocols; SMTP with basic authentication.Due late september 2025, now is the time to prepare your systems for the decommission of SMTP relay using the old basic authentication. This article talks about a few ways to modernize sending mails. High volume email…
-
Microsoft Defender for Endpoint – Use Microsoft Security API to export inventory
Intro This guide will assist in the proces of exporting inventory from Defender for Endpoint. This export will both export servers and clients that are registrered in Defender for Endpoint, since servers also registrer to the same inventory as clients. It can be useful then you want to export data about high exposure devices, or…
-
Azure Bastion
Deploy Azure Bastion to subscription No hassle of managing Network Security Groups (NSGs)You don’t need to apply any NSGs to the Azure Bastion subnet. Because Azure Bastion connects to your virtual machines over private IP, you can configure your NSGs to allow RDP/SSH from Azure Bastion only. This removes the hassle of managing NSGs each…
-
Create custom Privileged Identity Management (PIM) group with approver
Description This guide will walk through the proces of creating custom PIM group that will give members eligility to elevate and become global admin. This guide will also outline how to setup approver as required step in the proces of elevation. Create groups Enable groups for PIM Setup PIM for the group that holds the…
-
Manage emergency access accounts in Microsoft Entra ID (Break glass)
Microsoft Learn source article: https://learn.microsoft.com/en-us/entra/identity/role-based-access-control/security-emergency-access This guide was originally written as an internal guide for infrastructure consultants to configure for customers. However I felt the need to share this approach, since break-glass is a concept widely debated, but very important to configure. I do also recommend the use of a direct partner of Microsoft, that can…
-
Require Multifactor Authentication to register or join devices with Microsoft Entra
In Entra ID under Devices, All Devices and then Device Settings, you can enable: Require Multifactor Authentication to register or join devices with Microsoft Entra. However Microsoft recommends disabling this feature (enabled by default) and enforcing via a conditional access policy instead. This guide provides 2 ways of achieving that goal. Method 1: This method…
See my latests videos on my Youtube channel
Christoffer Klarskov Jakobsen – YouTube
Comments