MFA Without the Authenticator App for Azure AD and Microsoft 365

Multi-Factor Authentication (MFA) adds an important layer of security to Azure AD or Microsoft 365 accounts.  For many, the Microsoft Authenticator app provides the needed second-factor for MFA.  But that depends on a mobile device.  In some cases, an employer may want to use an alternative to a cell phone or mobile device for MFA.  This video looks at a Yubico Yubikey hardware token as an alternative to the Microsoft Authenticator app on a cell phone for Azure MFA.

Continue reading “MFA Without the Authenticator App for Azure AD and Microsoft 365”

Getting Started with Azure AD App Proxy

Azure AD App Proxy

Azure AD Application Proxy provides a simple, secure, and cost-effective way for remote access to on-premises websites and web-based applications.  This video starts with an overview of how App Proxy works and then provides a tutorial on configuring the service with basic Azure AD authentication.

Continue reading “Getting Started with Azure AD App Proxy”

Azure AD Domain Services Forest Type, User or Resource?

Azure AD Domain Servcies

Azure Active Directory Domain Services (Azure AD DS) now supports two forest types: User and Resource.  In this video, we go over what each Azure AD DS forest type, User and Resource, does and when to use one over the other.

Continue reading “Azure AD Domain Services Forest Type, User or Resource?”

Azure AD Connect Sync and Cloud Sync, What’s the Difference?

Azure AD

Many organizations use Azure AD Connect Sync to synchronize hybrid identities from Windows AD to Azure AD DS.  Microsoft recently announces a new service, Azure AD Connect Cloud Sync, that also synchronizes Windows AD identities to Azure AD.  In this video, we go over how they are similar, features that are different, and when to use one or the other.

Continue reading “Azure AD Connect Sync and Cloud Sync, What’s the Difference?”

Enable MFA for WVD ARM

WVD

In this video, we go over enabling Multi-factor Authentication, or MFA, for Windows Virtual Desktop (WVD) Spring Update, or ARM.  We use an Azure AD Conditional Access Policy to enforce MFA on a group of users.  We also set an MFA Trusted IP address to exclude a public IP source from the MFA Policy.

Continue reading “Enable MFA for WVD ARM”