Security Archives | Peter Klapwijk

Onboarding a passwordless Azure AD user

April 1, 2023 Peter Klapwijk 2

Onboarding a passwordless Office 365 user, is that possible? That was the question I recently asked myself. I’ve been using my Azure AD account without a password I guess for about a year now. I […]

Configure FIDO security keys as the default sign-in option for Windows

February 27, 2023 Peter Klapwijk 14

Today a short article on configuring FIDO2 security keys as the default login option for your Windows devices. I describe how we assign the default credential provider with Microsoft Intune, which is the logon setting […]

Send a Microsoft Defender Security recommendations report to your users with Logic Apps

September 3, 2022 Peter Klapwijk 1

Today’s blog post is about sending a report to end-users with a report of the security recommendations from the Microsoft 365 Defender security portal. The thought behind sending such a report to the end-user is […]

Assign Deny Local Log On user right to an (Azure) AD group by using Microsoft Intune

June 1, 2022 Peter Klapwijk 4

We have the need to assign the Deny Local Log On user rights to certain user accounts. On our traditional managed Windows devices we configured this by assigning this user right to an AD group […]

Add a certificate to the Trusted Publishers with Intune without reporting errors

May 31, 2022 Peter Klapwijk 3

I recently needed to deploy certificates to the Trusted Publishers store on Windows devices with Microsoft Intune. And where the deployment of the certificates itself went fine (I could see the certificates show up in […]

Configure a user-assigned Azure Managed Identity – the basics

May 21, 2022 Peter Klapwijk 0

If you have read one of my automation-related flows before, you know most of these solutions rely on querying Graph API using HTTP actions in a Logic Apps flow. When I first started using these […]

How to assign Azure AD roles to Azure AD groups

April 12, 2022 Peter Klapwijk 1

Not so long ago I wrote the article Azure role-based access control – BitLocker Recovery Key Reader. As a response to that article, I received a question related to the possibility of assigning these kinds […]

Azure role-based access control – BitLocker Recovery Key Reader

April 2, 2022 Peter Klapwijk 0

Last month Microsoft finally announced new features related to role-based access control with which we can create a custom role that only holds the permissions to read BitLocker keys. Besides the custom role announcement, also […]

Secure your social media accounts with multifactor authentication

January 4, 2022 Peter Klapwijk 0

This isn’t exactly a topic I normally write a post about, as I normally write posts related to the Microsoft 365 suite, but I find it important that also personal online accounts are kept secure. […]

Using your smartphone as a FIDO security with IDmelon

September 19, 2021 Peter Klapwijk 9

I have been using several different FIDO2 security keys in the past year to passwordless sign-in to my Azure AD accounts. The used keys are from different vendors like Authentrend, Feitian, and Yubico. I have […]

Peter Klapwijk - In The Cloud 24-7

Intune, EMS, Windows, Office 365, Microsoft 365, Azure

Security