In the past it was possible to create non-expiring client secrets. When creating a client secret the drop down menu showed the option Never expires.
Category: Security

Today a slightly different blog. Normally I blog about implementing stuff in Microsoft 365/Azure AD/Security. This one, is about an issue I encountered last week

Protecting users and authentications with MFA is one of the most important things to do. Users need to identify their authentications with at least one

In this blog I’ll show you step by step how to onboard Windows Servers (Known in Microsoft Defender for Cloud) to Microsoft Defender for Endpoint.

There might be a scenario where you would like to block (or Allow) specific Cloud Applications/Web Applications. In this blog I pick OpenAI ChatGPT as

While using Conditional Acces, we can require specific requirements for users, devices, apps, countries (locations), device states, etc. This gives us the opportunity to allow

Intune has great features, why don’t we combine them!? In this post I’ll show you how you can require specific ASR (Attack Surface Reduction Rules)

In this blog I’ll show you step by step instructions for data protection on unmanaged devices. We can do this using Microsoft Defender for Cloud

The SMTP Authentication protocol (in Exchange Online) is the most attacked (legacy) protocol now a days. This happened since Microsoft is currently disabling all other

While most people rely on Azure AD Sign-in logs, there are some additional features which are worth implementing in your tenant. One of these features