Security Archives | Peter Klapwijk

Assign Deny Local Log On user right to an (Azure) AD group by using Microsoft Intune

June 1, 2022 Peter Klapwijk 2

We have the need to assign the Deny Local Log On user rights to certain user accounts. On our traditional managed Windows devices we configured this by assigning this user right to an AD group […]

Add a certificate to the Trusted Publishers with Intune without reporting errors

May 31, 2022 Peter Klapwijk 1

I recently needed to deploy certificates to the Trusted Publishers store on Windows devices with Microsoft Intune. And where the deployment of the certificates itself went fine (I could see the certificates show up in […]

Configure a user-assigned Azure Managed Identity – the basics

May 21, 2022 Peter Klapwijk 0

If you have read one of my automation-related flows before, you know most of these solutions rely on querying Graph API using HTTP actions in a Logic Apps flow. When I first started using these […]

How to assign Azure AD roles to Azure AD groups

April 12, 2022 Peter Klapwijk 1

Not so long ago I wrote the article Azure role-based access control – BitLocker Recovery Key Reader. As a response to that article, I received a question related to the possibility of assigning these kinds […]

Azure role-based access control – BitLocker Recovery Key Reader

April 2, 2022 Peter Klapwijk 0

Last month Microsoft finally announced new features related to role-based access control with which we can create a custom role that only holds the permissions to read BitLocker keys. Besides the custom role announcement, also […]

Secure your social media accounts with multifactor authentication

January 4, 2022 Peter Klapwijk 0

This isn’t exactly a topic I normally write a post about, as I normally write posts related to the Microsoft 365 suite, but I find it important that also personal online accounts are kept secure. […]

Using your smartphone as a FIDO security with IDmelon

September 19, 2021 Peter Klapwijk 9

I have been using several different FIDO2 security keys in the past year to passwordless sign-in to my Azure AD accounts. The used keys are from different vendors like Authentrend, Feitian, and Yubico. I have […]

Secure multiple accounts with a FIDO2 security key

August 25, 2021 Peter Klapwijk 0

Today a short article to make people aware that a FIDO2 security key isn’t tied to one Azure AD/ Office 365 account. We don’t have to purchase a separate key for every Azure tenant we […]

Secure personal mobile devices with Microsoft Intune and Defender for Endpoint

August 11, 2021 Peter Klapwijk 9

Last year Microsoft announced the public preview of their own Mobile Threat Defense Solution for Android and iOS: Microsoft Defender for Endpoint. Since that time Defender for Endpoint made it to general availability and new […]

Secure your Twitter account with a FIDO security key

July 31, 2021 Peter Klapwijk 0

A lot of people are already familiar with FIDO2 compatible security keys to sign in without a password to services like Office 365/ Azure AD. But passwordless sign-in is not the only use case for […]

Peter Klapwijk - In The Cloud 24-7

Intune, EMS, Windows, Office 365, Microsoft 365, Azure

Security