Cloud
- DataON Azure Stack HCI for SLGE. Power, versatility, reliability, trust. Run Kubernetes or VDI, migrate from VMware, deploy Azure Edition Windows Server https://youtu.be/LG-GlpLVPeE
- Azure VMware Solution preview available in Azure Government https://azure.microsoft.com/en-us/blog/azure-vmware-solution-in-microsoft-azure-government-streamlines-migration-efforts/
- Routers in the cloud? “So in essence, a subnet in Azure is not a L2 broadcast domain, but just a logical group of NICs that share the same routing policy.” https://blog.cloudtrooper.net/2023/01/21/azure-networking-is-not-like-your-on-onprem-network/
Security
- The LastPass compromise is all about the difficulty of protecting apps and data on BYOD without Zero Trust https://www.helpnetsecurity.com/2023/02/28/lastpass-breach-corporate-vault/
- Noise is the enemy of speed in a SIEM https://securityinsights.substack.com/p/what-should-i-log-in-my-siem?sd=pf
- Protect users, reduce your attack surface, lower your insurance bill Improving Cyber Insurance Coverage with Microsoft Security | CSO Online
- Get Security Done Original GSD project in one Page – Get Security Done (dcaddick.github.io)
- MDE MVP series. Intro, configure, onboard, protect. MDE Series blogs – Jeffrey Appel – Microsoft Security blog
- Defender what’s new for March 2023 https://techcommunity.microsoft.com/t5/microsoft-365-defender-blog/monthly-news-march-2023/ba-p/3758308
- Microsoft Defender Vulnerability management. P2 add-on, Defender for Cloud, or standalone add-on Microsoft Defender Vulnerability Management premium capabilities
- Sync M365 Defender to Sentinel https://learn.microsoft.com/en-us/microsoft-365/security/defender/microsoft-365-defender-integration-with-azure-sentinel?view=o365-worldwide
- Workflow for mitigating app vulnerabilities with Intune and Defender Remediate vulnerabilities | Microsoft Learn
Endpoint
- Intune Suite overview on Microsoft Mechanics https://youtu.be/nEa5AFBCRbI
- Intune suite launch announcement blogs http://aka.ms/IntuneSuiteLaunch
- Intune Endpoint Privilege Management to grant users limited/scoped elevated actions in Windows Enable Windows standard users with Endpoint Privilege Management in Microsoft Intune – Microsoft Community Hub
- Intune pricing Microsoft Intune Plans and Pricing
- Microsoft Intune Plan 2 and Microsoft Intune Suite are not yet available for GCC, GCC-High or DoD customers.
- Nick Moseley’s Endpoint Insights for February 23 – even more and better links for sharing and caring https://www.linkedin.com/smart-links/AQGcsNU3lkxPGw/863e5949-6166-4f8f-ae45-8b6d05064710
- Skilling Snack, Windows Autopilot https://techcommunity.microsoft.com/t5/windows-it-pro-blog/skilling-snack-windows-autopilot/ba-p/3756518
Identity
- GCCH/Commercial collaboration, reduces need for ADFS Collaborate securely across organizational boundaries and Microsoft clouds – Microsoft Community Hub
- Azure AD Connect is a tier 0 identity server and can be used to attack your AAD tenant https://cloudbrothers.info/en/prem-global-admin-password-reset/
- PIM for AAD security groups, how and where it works https://learn.microsoft.com/en-us/azure/active-directory/privileged-identity-management/concept-pim-for-groups?WT.mc_id=AZ-MVP-5003945
- Prepare for 2024 authentication changes in Azure AD, and please use Azure AD Premium for Conditional Access instead of security defaults or per-user MFA. https://msendpointmgr.com/2023/03/06/migrating-to-authentication-methods/
Teams
- Talking To Myself, a Teams Voice blog for GCC customers https://talking-to-myself.blog/
jcengelking.dev 