ENTRA

Activate PIM Role with Azure Mobile App

Activate PIM Role with Azure Mobile App

Andres Bohren
Hi All, Recently i saw an Info, that Privileged Identity Management (PIM) Roles can now be activated with the Azure mobile app on iOS and Android. Time to test it out. Source: What’s new in Microsoft Entra ID? Azure Mobile App There is now a new “Privileged Identity Management” Feature. I t was way down, so i moved it up with the two bars in the Settings of the Startmenu.
List FIDO2 Keys and AAGUID for all Users with Microsoft Graph

List FIDO2 Keys and AAGUID for all Users with Microsoft Graph

Andres Bohren
Hi All, While looking into Enable passkeys in Microsoft Authenticator (preview) i figured, it is a good Idea tho have a List of FIDO2 AAGUID’s of all Users if enabled. This Article shows you how to Export the FIDO2 Keys and the AAGUID of all Users in a M365 Tenant. During my research i also found some AAGUID Lists on the Internet YubiKey Hardware FIDO2 AAGUIDs FIDO2 AAGUID lists Passkey Provider AAGUIDs Here you can see a registered FIDO2 Key in the M365 Security Info
Entra Connect Sync 2.3.8 released

Entra Connect Sync 2.3.8 released

Andres Bohren
Hi All, Somehow i did miss, that there was an Update for Entra Connect Sync (Azure Active Directory Connect) from early April. It’s for download only, so no Automatic Update. Microsoft Entra Connect: Version release history Download Microsoft Entra Connect It’s still a bit a mess with the Product Names. The Product Name is “Microsoft Entra Connect Sync” but you download “Azure ADConnect.msi”. Installation I’ve downloaded the MSI and here are the Installation Screenshots
License Utilization Report for Entra ID P1 and P2

License Utilization Report for Entra ID P1 and P2

Andres Bohren
Hi All, Did you notice the new License Utilization Report in Entra ID? Why has Microsoft created such a Report? Maybe they see that Users without Entra ID P1 or P2 Licenses are using these Features and not paying for it. It might be that Microsoft will be more accurate in the Future and enforce Users to be licensed to use these Features. So prepare for it and have a look at the Reports.
Entra Connect Sync 2.3.6 released

Entra Connect Sync 2.3.6 released

Andres Bohren
Hi All, Somehow i did miss, that there was an Update for Entra Connect Sync (Azure Active Directory Connect) mid December. It’s for download only, so no Automatic Update. Microsoft Entra Connect: Version release history Microsoft Entra Connect: Automatic upgrade https://learn.microsoft.com/en-us/entra/identity/hybrid/connect/how-to-connect-install-automatic-upgrade Start the event viewer and look in the Application eventlog. Add an eventlog filter for the source Microsoft Entra Connect Upgrade and the event ID range 300-399. It’s still a bit a mess with the Product Names.
Microsoft Entra Verified ID

Microsoft Entra Verified ID

Andres Bohren
Hi All, I was curious and enabled Entra Verified ID. MS Learn Introduction to Microsoft Entra Verified ID In the Entra Admin Center i clicked on Verified ID > Get started > Get started Now you need to select one of the custom Domains from Entra ID It takes a few minutes to set up everything I wante to limit who can get a verified and jumped to step 3
MSIdentityTools PowerShell Module V2.0.50 released

MSIdentityTools PowerShell Module V2.0.50 released

Andres Bohren
Hi All, A few Hours ago, a new Version of the MSIdentityTools PowerShell Module has been released to the PowerShell Gallery. Seems to have some fixes, after the last Version was just released two Days ago. PSGallery MSIdentityTools 2.0.50 GitHub Release MSIdentityTools v2.0.50 Added macos support I am using the new PSResourceGet here instead of the PowerShellGet commands. Check the PowerShell Module that is installed and what is available from the PowerShell Gallery
MSIdentityTools PowerShell Module V2.0.49 released

MSIdentityTools PowerShell Module V2.0.49 released

Andres Bohren
Hi All, A few Hours ago, a new Version of the MSIdentityTools PowerShell Module has been released to the PowerShell Gallery. PSGallery MSIdentityTools 2.0.49 I am using the new PSResourceGet here instead of the PowerShellGet commands. Check the PowerShell Module that is installed and what is available from the PowerShell Gallery Get-InstalledPSResource MSIdentityTools -Scope AllUsers Find-PSResource MSIdentityTools Uninstall the old version of the PowerShell Module and install the current version
Microsoft Graph Report Device Owner

Microsoft Graph Report Device Owner

Andres Bohren
Hi All, Recently i came across a Case where i wanted to know what devices are Associated to a specific Owner. You can do that in Entra Admin Center and filter for a specific Owner. Once you click on the Device, you can see more details of the device Let’s check out the Microsofg Graph API with Graph Explorer You need to use the ObjectID and not the DeviceID https://graph.microsoft.com/v1.0/devices/e151ae1b-9083-448b-b482-ed6609e80037 Once you have a Device you can figure out who is the Owner
Manage direct assigned Licenses and Service Plans with Microsoft.Graph

Manage direct assigned Licenses and Service Plans with Microsoft.Graph

Andres Bohren
Hi All, A few Weeks ago i did write a Blog Article how to Keep Track of new ServicePlans in M365 Licenses with Azure Automate and Microsoft.Graph PowerShell Modules. I received a Question, how to add or remove specific Service Plans to a License for a specific User. Basically there are two methods: Direct Assigned Licenses Group-based License I wrote a Blog Article on how to add and remove Licenses with Microsoft.