Category: Azure Active Directory

To expire a password or not to expire?

Let’s discuss one of my more “unpopular” opinions. Microsoft states in its documentation the following: Password expiration requirements do more harm than good because these requirements make users select predictable passwords, composed of sequential words and numbers that are closely related to each other. In these cases, the next password can be predicted based on […]

MC2MC: Winter is coming

To PIM or not To PIM, How is the Question In our recent Privileged Identity Management (PIM) session, my colleague Michael Van Horenbeeck and I shifted the focus from the decision of whether to implement PIM, as unanimity prevailed on that front. Instead, we honed in on the practical nuances of utilizing PIM effectively. PIM […]

🔒 Exciting Insights from the Belgian Microsoft Cloud & Security Community Event! 🔍

Had an incredible time at the recent Belgian Microsoft Cloud & Security Community Event, and I’m thrilled to share highlights from the event in my latest video! 🌐 Organizer Spotlight: Michael Van Horenbeeck Michael provided invaluable insights into what makes the community thrive and the incredible impact it has on fostering collaboration in the Microsoft […]

Force usage of FIDO2 key when elevating your priviliges

In this video, we go over the strengths of a FIDO 2 and how we can use “authentication context” in a conditional access policy to require FIDO2 as an MFA method. If you want to secure your precious accounts with an extra security layer, this video might spark your interest. We are configuring that an […] does not register to Azure AD

I was preparing a video about not-phish able authentication methods and I wanted to register my ATKey.Pro FIDO (type C) to my authentication methods. At the end of my registration flow I was confronted with this pop-up. Azure AD audit logs The error message gives the indication more info can be found in Azure AD. […]