Tag: Microsoft Entra

I have just renewed my SC-300 certification, and the experience reminded me exactly why this exam continues to be one of the most valuable Microsoft credentials anyone in IT can hold. If you are preparing to sit the SC-300 exam for the first time, or you are coming up to renewal like I was, this article is a deep, […]

Microsoft Entra PIM is one of those controls most admins know they should use, but many tenants still leave too much privilege permanently assigned. That is the bit that causes the damage. A user does not need to be a Global Administrator all day because they occasionally reset Conditional Access, approve an enterprise app, update […]

Let’s be honest about how you manage Privileged Identity Management (PIM) and PIM for groups? Think back to when you set up an existing admin, What did that workflow look like? Did you go into PIM, search for “the user”, click “Add Assignment”, and select the Exchange Administrator role? Then did you go back, search […]

Restricted Management Administrative Units (RMAUs) in Microsoft Entra ID provide a secure way to isolate and protect sensitive users, devices, and security groups.When you enable restricted management, even tenant-wide roles like Global Administrator lose access unless explicitly assigned within that Administrative Unit (AU).This feature prevents accidental or malicious changes to high-value accounts. Never miss an […]

Break glass accounts exist for moments like this “My entire Microsoft 365 organisation is down. I can’t even log in as the admin.” This was the cry for help from a sysadmin whose tenant became completely inaccessible due to a misconfigured MFA policy. Microsoft Teams? Down. SharePoint? Inaccessible. Admin centre? Locked out. Even the global […]