Tag: Entra ID

I have just renewed my SC-300 certification, and the experience reminded me exactly why this exam continues to be one of the most valuable Microsoft credentials anyone in IT can hold. If you are preparing to sit the SC-300 exam for the first time, or you are coming up to renewal like I was, this article is a deep, […]

Microsoft Entra PIM is one of those controls most admins know they should use, but many tenants still leave too much privilege permanently assigned. That is the bit that causes the damage. A user does not need to be a Global Administrator all day because they occasionally reset Conditional Access, approve an enterprise app, update […]

Microsoft Entra passkeys are no longer something you can quietly ignore and “come back to later”. They are being pushed into tenants, surfaced during registration campaigns, and slowly becoming the direction Microsoft wants They are being surfaced more often in the platform, registration campaigns can bring them in front of users earlier than expected, and […]

Someone can’t sign in. Your phone pings, you open the Microsoft Entra admin centre, navigate to sign-in logs, set the user filter, scroll through a wall of events, click into a failed entry, try to decode the failure reason, then open a browser tab to look up the error code. Sound familiar? I’ve been there […]

Let’s be direct about how most organisations handle Conditional Access session controls. You built your policies. You required MFA. You targeted All Resources. You congratulated yourself and moved on. But did you scroll down to the Session section before you saved? If you are not sure, the answer is probably no, and that means your users can […]

Let’s be honest about how you manage Privileged Identity Management (PIM) and PIM for groups? Think back to when you set up an existing admin, What did that workflow look like? Did you go into PIM, search for “the user”, click “Add Assignment”, and select the Exchange Administrator role? Then did you go back, search […]

Microsoft 365 Companion Apps are becoming a core part of a successful Copilot rollout on Windows 11. If you are an IT admin or tech lead planning Copilot adoption, these apps are not something to skip. The Companion apps (Files, People, Calendar) sit alongside Microsoft 365 Copilot and give users fast access to the content […]

Microsoft’s Zero Trust Assessment gives you a structured way to understand how closely your Microsoft 365 tenant aligns with modern security expectations. It reviews core identity, device, access and logging configurations, then produces a clear report with practical guidance. Never miss an article and subscribe, and don’t forget to subscribe to my YouTube channel, Control Alt […]

If attackers can’t phish a password, they’ll just ask for permission instead. That is exactly how consent phishing works: a user is tricked into approving an app that looks genuine, granting it silent access to mailboxes, OneDrive, or Teams data. Microsoft Entra ID now gives administrators more control to stop this.By restricting who can grant […]

Restricted Management Administrative Units (RMAUs) in Microsoft Entra ID provide a secure way to isolate and protect sensitive users, devices, and security groups.When you enable restricted management, even tenant-wide roles like Global Administrator lose access unless explicitly assigned within that Administrative Unit (AU).This feature prevents accidental or malicious changes to high-value accounts. Never miss an […]