Hi All,
A few Days ago i did read the following Article about DKIM Signing Keys at Heise Online
E-Mails: Experten schleusen Fälschungen mittels geknackter DKIM-Schlüssel ein One of the key Messages is this:
The attempt shows that RSA keys with a length of 384, 512 or 768 bits can be cracked with little effort. But 1024-bit DKIM keys are no longer “state of the art” today, but are often still accepted for reasons of compatibility.
Hi All,
A few years ago, i did write a Script to warn Entra Application Owners about expiring ClientSecrets and Certificates.
PowerShell Script to check for AAD Apps with expiring ClientSecrets and Certificates The Script has been using the AzureAD PowerShell Module. Time to renew it to Microsoft.Graph
Entra App Registrations Here is the Code to get the Entra App Registration with Microsoft.Graph PowerShell
#Connect to Microsoft.Graph Connect-MgGraph -Scopes Application.Read.All -NoWelcome Let’s have a look at a specific Entra Application
Hi All,
Did you notice the following Message Center Message about the Junk-E-Mail Reporting Buttons in Outlook Mobile?
Microsoft Outlook for iOS/Android: New reporting buttons integrated with Microsoft Defender for Office 365 Let’s have a look at the Release notes for Outlook Mobile. Look how detailed it is 😂
Built-In Report Buttons The built-in Report button is available in the following versions of Outlook:
Outlook for Microsoft 365 version 16.0.17827.15010 or later and Outlook 2021 Version 2407 (Build 17830.
Hi All,
Almost a Year ago, i’ve blogged about Microsoft Entra Verified ID
Since August 2024 Microsoft Entra Verified ID now generally available
Setup Entra Verified ID - Advanced Setup Recently i have been playing around with Entra Verified ID again. This time using Advanced setup.
You need to have the “Global Administrator” Role
You need to Prepare an Azure Keyvault
Step1: Configure organization settings Now let’s dig into the Configuration
Hi All,
Today, the Exchange Server Updates from November 2024 have ben re-released.
Re-release of November 2024 Exchange Server Security Update packages Released: November 2024 Exchange Server Security Updates Downloads:
Security Update For Exchange Server 2016 CU23 SU14 V2 (KB5049233) Security Update For Exchange Server 2019 CU14 SU3 V2 (KB5049233) Exchange 2019 You have to reboot the Server after the Installation
There is a new Version of Healthchecker
Exchange 2016 You have to reboot the Server after the Installation
Hi All,
A few weeks ago, i did read the Article The latest enhancements in Microsoft Authenticator on the Entra Blog.
The Process of storing a Passkey in Authenticator App has been massivly improved.
I’ve tested this on my Android 14 Device.
The Passkey has been created
It’s explained how to use the Passkey
If you click on the URL and choose to use a Passkey
It still does not work in the Browser
Hi All,
Recently i’ve blogged about Azure DNS finally supports DNSSEC (Preview).
Today i want to show you how to enable DNSSEC on a Zone hosted in Azure by using the AZ PowerShell
Connect to Azure and list the Azure DNS Zones
Connect-AzAccount -Tenant icewolfch.onmicrosoft.com Get-AzDnsZone -ResourceGroupName rg_prod | ft name, ZoneType, ResourceGroupName, SigningKeys List a specific Zone (it is DNSSEC Enabled)
Get-AzDnsDnssecConfig -ResourceGroupName rg_prod -ZoneName icewolf.ch List a specific Zone (it is not DNSSEC Enabled)
Hi All,
On Ignite there was the anouncement, that Azure DNS finally supports DNSSEC (in public Preview).
DNSSEC overview (Preview) How to sign your Azure Public DNS zone with DNSSEC (Preview) Setup Bevore changing anythin i did run a check on Verisign Labs DNSSEC
Let’s go to Azure Portal and navigate to a DNS Zone. You can now see a “DNSSEC” Icon.
Now let’s “Enable DNSSEC”
Confirm
After a few Seconds you see DNSSEC delegation information
Hi All,
Recently i was working together with one of my fellows (shout out to Raul Ruta) to figure out how Register Passkeys with the new Microsoft Graph Beta API’s.
The only thing we found was the Article of Jan Bakker, that uses the Yubico Sample scripts based on Phyton.
Register Yubikeys on behalf of your users with Microsoft Entra ID FIDO2 provisioning APIs I was looking if there is a better way that does not require Phyton and found this PowerShell Module
Hi All,
I recently had a customer that still allows SMS for MFA Authentication on theyr Entra ID Tenant.
We all know, that SMS and Voice, should not be used anymore for MFA Authentication.
In addition, i would point out, that can lead to a very bad situation, when using Teams Phone as your Voice destination. Think of how you want to authenticate to Teams, when receiving the MFA Voice call there 😂
