Posts

Microsoft 365 integration with on-premises environments

-
Image
Sync your users Synchronization is the process of keeping user accounts, devices, and groups, up to date based on conditions set by the admin. Both ‎Azure Active Directory‎ (‎Azure AD‎) cloud sync and ‎Azure AD Connect‎ synchronize and link user accounts, devices, groups, and password hashes (not passwords) from an on-premises ‎Active Directory‎ to ‎Azure AD‎ to maintain a single sign-on experience. Note that only ‎Azure AD‎ cloud sync supports the following features: Connect to multiple disconnected on-premises ‎Windows‎ Server ‎Active Directory‎ forests Multiple active agents for high availability Lightweight agent installation model View a full comparison list between ‎Azure AD Connect‎ and cloud sync For this exercise, we would be syncing our on-premises server to the cloud for continuous sync. ‎Azure AD Connect‎ is great for companies that still rely on a large IT infrastructure that is hosted locally in the office. Also, I have installed a fresh image of Windows Server 2019 Datac...
Post a Comment
Read more

Understanding and Deploying Privileged Identity Management (PIM) in Azure AD

-
Image
What is it? PIM is basically a service in Azure Active Directory (Azure AD) that enables you to manage, control, and monitor access to important resources of an organization including resources in Azure AD, Azure, and other Microsoft Online Services such as Microsoft 365 or Microsoft Intune. It provides a way to enable on-demand time-limited access for administrative tasks. Why use PIM? An organization always needs to monitor and protect the use of elevated permissions to mitigate the risks of excessive, unnecessary, or misused access permissions on resources that can leak some sensitive information or fall into the wrong hands. We can use PIM in this case and give users just-in-time privileged access to Azure and Azure AD resources and can oversee what those users are doing with their privileged access. Let's try deploying PIM and see how it works for a user. Before deploying, we need to plan what and how are we going to give access to resources and to whom. There are 4 ...
Post a Comment
Read more