Azure Point-to-Site VPN with Azure AD Authentication and MFA

This video goes over how to deploy an Azure VNet Gateway on an existing VNet and enable Point-to-Site (P2S) VPN connections using Azure AD to authenticate the client.  A P2S connection allows clients to connect securely to an Azure Gateway and access resources on the private VNet.  The video goes on to demonstrate how enable Multi-Factor Authentication with a Conditional Access policy or enforcing MFA per-user.

Continue reading “Azure Point-to-Site VPN with Azure AD Authentication and MFA”

Azure Point-to-Site VPN with Certificate Based Authentication

This video goes over how to deploy an Azure VNet Gateway on an existing VNet and enable Point-to-Site (P2S) VPN connections.  A P2S connection allows clients to connect securely to an Azure Gateway and access resources on the private VNet.  The video goes on to demonstrate how to create a root certificate and client certificates to use for authentication.  After that, configuring the client is demonstrated as well as blocking a client by revoking a certificate.

Continue reading “Azure Point-to-Site VPN with Certificate Based Authentication”

Use Splunk to Collect Logs from Office 365 and Azure AD

Microsoft has a lot of options to view Azure log data in one form or another. There is the Security Center, Azure Sentinel, Log Analytics, and Insights.  This is fine for an Azure centric organization, but many organizations already have log collection systems in place such as Splunk, and using multiple logging platforms is not efficient.  This article walks through sending Azure AD and Office 365 logs to Splunk.

Continue reading “Use Splunk to Collect Logs from Office 365 and Azure AD”

Site-to-Site Azure VPN with a Windows RRAS Server

Azure S2S VPN

This video shows how I created a VPN connection between my home lab and Azure Subscription.  I used a Routing and Remote Access role on a Windows Server 2019 as the local endpoint.  This provides the ability to setup a VPN connection without special firewall hardware.  This is useful for home labs and small offices that need connectivity to an Azure subscription.  It also is helpful to walk through the setup to prepare for Azure certifications such as the AZ-103.

Continue reading “Site-to-Site Azure VPN with a Windows RRAS Server”

Redeploy an Azure VM

Redeploy

In this video I reviews the Redeploy tool for Azure IaaS VM’s.  I give an overview of what the tool is used for and then a demo on how to run Redeploy against Windows and Linux VM’s through the Portal and using PowerShell and the Azure Cloud Shell.  This Video is for anyone who administrates Azure VM’s or interested in taking the AZ-103 certification exam.

Continue reading “Redeploy an Azure VM”

Troubleshooting and reporting VM performance data in Azure with PerfInsights

In this video, I walk through Azure Perfinsights, a performance reporting and troubleshooting tool for Windows and Linux Virtual Machines.

Azure Bastion Preview Setup Walk Through

In this video, I walk through the prerequisites and setup of the new Azure Bastion Service for IaaS servers.  Azure Bastion provides RDP and SSH access to Windows and Linux servers without the need for public IP’s or VPN connections.  Access is enabled through the Azure portal with an HTML5 client.

Continue reading “Azure Bastion Preview Setup Walk Through”