Azure Files SMB Access with Windows AD allows you to access file shares in Azure with NTFS access control. By default, that access won’t extend to an on-prem network over VPN or Express Route. This video shows how to extend access to an Azure Files share with Windows AD to an on-premises network using Private Endpoints.Continue reading “Azure Files SMB Access On-premises with Private Endpoints”
Azure Files allows you to access file shares in Azure, but until recently use was restricted to RBAC permission. Azure Files SMB Access for Azure AD Domain Services is generally available and support for Windows AD is now in public preview. This video goes over how to enable Azure Files for SMB access secured with your on-premises Windows AD Directory Services.Continue reading “Azure Files SMB Access with Windows AD”
Microsoft has a lot of options to view Azure log data in one form or another. There is the Security Center, Azure Sentinel, Log Analytics, and Insights. This is fine for an Azure centric organization, but many organizations already have log collection systems in place such as Splunk, and using multiple logging platforms is not efficient. This article walks through sending Azure AD and Office 365 logs to Splunk.Continue reading “Use Splunk to Collect Logs from Office 365 and Azure AD”
In this video, I go over deploying Azure AD and configuring replication with an on-premises Windows Active Directory domain and Azure Active Directory. I review deployment options and how to synchronize passwords from Windows and Azure directory services. A server is deployed and joined to the Azure AD Domain Services domain and users source from Azure AD and Windows AD log in using same sign-on credentials.Continue reading “Deploy Azure AD Domain Service and Join a Server to the Domain”
EDIT 11/16/2016 – This information is outdated. WVD now supports Azure AD Domain Services with users sourced from Windows Server AD.
I spent hours this week trying to design a Windows Virtual Desktop solution that stores FXLogix profiles in Azure Files. This should be a simple task, but once I got into the details it proved anything but simple. The first consideration was a note on the overview page of the WVD documentation “What is Windows Virtual Desktop” :Continue reading “Windows Virtual Server and Active Directory Requirements (and Azure Files While I’m At It)”
Microsoft has a couple of options available for identity and authentication services including Active Directory Domain Services, Azure Active Directory, and Azure Active Directory Domain Services. This can lead to confusion, especially considering three of the options have “Active Directory” in the name. It also leads to the question “do we still need domain controllers?” This post reviews these three different options, outlining the functionality and comparing how they work together in Microsoft and Azure.Continue reading “Active Directory Domain Service, Azure Active Directory and Azure Active Directory Domain Service Explained”
For all the technical challenges I’ve ran into, nothing is more frustrating than trying to understand Microsoft Licensing. I put together an infogram as an attempt to explain Microsoft licensing and the relationship between the O365, EMS and the new Microsoft 365 license bundle. Supporting links are below as well as a video I put together to explain how each product relates to the other. This is meant to be informational only, please seek assistance from a Microsoft licensing professional before making any purchasing decisions. Continue reading “Microsoft 365 E3 and E5 Bundels”