MFA Without the Authenticator App for Azure AD and Microsoft 365

Multi-Factor Authentication (MFA) adds an important layer of security to Azure AD or Microsoft 365 accounts.  For many, the Microsoft Authenticator app provides the needed second-factor for MFA.  But that depends on a mobile device.  In some cases, an employer may want to use an alternative to a cell phone or mobile device for MFA.  This video looks at a Yubico Yubikey hardware token as an alternative to the Microsoft Authenticator app on a cell phone for Azure MFA.

Continue reading “MFA Without the Authenticator App for Azure AD and Microsoft 365”

Hybrid Azure AD Join: The device object by the given ID is not found

I worked on an Azure Active Directory lab for Hybrid Azure AD Join today and ran into a problem.  The lab is a new deployment, single Windows Server 2019 Domain Controller running the 2.x version of Azure AD Connect Sync.  Express install was used, there are no OU or advanced filters in place.  Following the directions outlined in the Microsoft documentation is straightforward.  However, after enabling Hybrid Azure AD Join, the computers did not show in the Azure AD Portal under Devices.

Continue reading “Hybrid Azure AD Join: The device object by the given ID is not found”

Enforce Multi-Factor Authentication (MFA) on External Guest Azure AD Accounts

In this video, we go over what a Business to Business (B2) external Azure AD account is and how to enforce Multi-Factor Authentication (MFA) on guest accounts with a Condition Access Policy.  The demo goes over disabling SMS authentication, then inviting guest users to the tenant.  After that, we walk through enabling MFA with the Microsoft Authenticator app.

Continue reading “Enforce Multi-Factor Authentication (MFA) on External Guest Azure AD Accounts”

Don’t Use Azure AD Domain Services to Replace Windows Domain Controllers

Azure AD Domain Services

I’ve been sitting on this topic for a while.  I typically like to pass along information that helps people better understand Azure and other Microsoft products absent of my option.  However, this post is slightly opinionated, an opinion that was formulated after seeing problems users ran into while trying to use Azure AD as a replacement for Windows AD. 

Continue reading “Don’t Use Azure AD Domain Services to Replace Windows Domain Controllers”

Schedule On-Demand Azure File Share Snapshots with an Azure Function

Azure Function

Azure Recovery Vault policies can only schedule one back a day.  This may not be frequently enough for some organizations.  On-demand backups can be initiated with PowerShell.  In this video, we use an Azure Function to schedule on-demand backup recovery points throughout the day.

Continue reading “Schedule On-Demand Azure File Share Snapshots with an Azure Function”

Windows 365 Enterprise: Requirements and Walkthrough

This post and video we cover requirements and an overview of how to configure and provision a Cloud PC with Windows 365 Enterprise.

Continue reading “Windows 365 Enterprise: Requirements and Walkthrough”

Azure Virtual Machine, Gen 1 or Gen 2?

Ever wonder why there are two virtual hardware versions for Azure VM’s, Generation 1 and Generation 2?  This video goes over the difference between them and when to us one over the other.  It goes on to demonstrate the differences when provisioning and changing the OS disk size on a VM.

Continue reading “Azure Virtual Machine, Gen 1 or Gen 2?”

Announcing Windows 365!

AVD

Microsoft announced Windows 365 this week at Inspire.  With this announcement comes a new way to deliver remote desktops as a Software as a Service (SaaS) platform built on Azure Virtual Desktop and is a significant addition to virtual desktop options in Azure.  There is a limited amount of information available about windows 365; in this post and accompanying video, we’ll break down what it is and how it differs from Azure Virtual Desktop.  Keep in mind that this is a new service, the information available may not be complete and change once Windows 365 is available.

Continue reading “Announcing Windows 365!”