Hi All,
In the previous Article i explained how to check for Entra Apps with expiring ClientSecrets and Certificates.
In this Blog Article i explain how we can extend this into a Azure Automation Runbook.
Automation Account The Azure Automation Account needs to have a Managed Identity
Use the AZ PowerShell to get Infos about the Azure Automation Account
############################################################################### # Get Managed Identity of Azure Automation Account ############################################################################### Connect-AzAccount -Tenant icewolfch.
Hi All,
A few years ago, i did write a Script to warn Entra Application Owners about expiring ClientSecrets and Certificates.
PowerShell Script to check for AAD Apps with expiring ClientSecrets and Certificates The Script has been using the AzureAD PowerShell Module. Time to renew it to Microsoft.Graph
Entra App Registrations Here is the Code to get the Entra App Registration with Microsoft.Graph PowerShell
#Connect to Microsoft.Graph Connect-MgGraph -Scopes Application.Read.All -NoWelcome Let’s have a look at a specific Entra Application
Hi All,
Almost a Year ago, i’ve blogged about Microsoft Entra Verified ID
Since August 2024 Microsoft Entra Verified ID now generally available
Setup Entra Verified ID - Advanced Setup Recently i have been playing around with Entra Verified ID again. This time using Advanced setup.
You need to have the “Global Administrator” Role
You need to Prepare an Azure Keyvault
Step1: Configure organization settings Now let’s dig into the Configuration
Hi All,
I’ve stumbled by coincidence across the Entra Connect Sync Update 2.4.27. It’s for Download Only, so no Automatic Update.
I am running currently Entra Connect Sync 2.4.21.0
Microsoft Entra Connect: Version release history Download Microsoft Entra Connect It’s still a bit a mess with the Product Names. The Product Name is “Microsoft Entra Connect Sync” but the Title ist “Microsoft Entra Connect” and you download “AzureADConnect.msi” 🫣
Installation I’ve downloaded the MSI and here are the Installation Screenshots
Hi All,
A few weeks ago, i did read the Article The latest enhancements in Microsoft Authenticator on the Entra Blog.
The Process of storing a Passkey in Authenticator App has been massivly improved.
I’ve tested this on my Android 14 Device.
The Passkey has been created
It’s explained how to use the Passkey
If you click on the URL and choose to use a Passkey
It still does not work in the Browser
Hi All,
Somehow i did miss, that there was an Update for Entra Connect Sync (Azure Active Directory Connect) from July and September. It’s for download only, so no Automatic Update.
I am running currently Entra Connect Sync 2.3.20.0
Microsoft Entra Connect: Version release history Download Microsoft Entra Connect It’s still a bit a mess with the Product Names. The Product Name is “Microsoft Entra Connect Sync” but the Title ist “Microsoft Entra Connect” and you download “AzureADConnect.
Hi All,
Recently i was working together with one of my fellows (shout out to Raul Ruta) to figure out how Register Passkeys with the new Microsoft Graph Beta API’s.
The only thing we found was the Article of Jan Bakker, that uses the Yubico Sample scripts based on Phyton.
Register Yubikeys on behalf of your users with Microsoft Entra ID FIDO2 provisioning APIs I was looking if there is a better way that does not require Phyton and found this PowerShell Module
Hi All,
I recently had a customer that still allows SMS for MFA Authentication on theyr Entra ID Tenant.
We all know, that SMS and Voice, should not be used anymore for MFA Authentication.
In addition, i would point out, that can lead to a very bad situation, when using Teams Phone as your Voice destination. Think of how you want to authenticate to Teams, when receiving the MFA Voice call there 😂
Hi All,
A few Years ago i wrote an Article on how to Grant Access to a Entra App in Sharepoint to upload Files to a SharePoint Site with PnP.PowerShell
Upload file to SharePoint Online with PnP.PowerShell I wanted to do the same thing and there is a big red bar on top, that informs about the Azure ACS Retirement in April 2026.
Starting April 2, 2026, Azure Access Control service (ACS) usage will be retired for SharePoint in Microsoft 365 and users will no longer be able to create or use Azure ACS principals to access SharePoint.
Hi All,
A week ago, i received a Mail from Microsoft with an Entra ID recommendation.
Designate more than one global admin
I was a little bit confused, since there are multiple Global Admins in my tenant. All between the recomeended 2 to 4 Accounts. As you can see in the Screenshots below
Global Administrator - Eligible in Privileged Identity Management (PIM)
Global Administrator - Active in Privileged Identity Management (PIM)
