Hello, i must have security default on or off in order to complete the migration?
@cloudscholarsКүн бұрын
I always take off security defaults. It limits what you can control. Normally for a small business without IT personnel.
@rhysjones81402 күн бұрын
Would you not just use it with a grant and require MFA, and restrict to only windows, mac and linux, this would result in any change of location triggering an MFA challenge, this would prevent issues where MFA tokens are moved by a hacker from one pc to another, as CAE would detect this immediately and revoke the stolen token
@tonysmith-g5t3 күн бұрын
Any idea why the Session section in my external tenant is disabled?
@cloudscholars3 күн бұрын
I’ve never seen that before. What license do you have?
@chimereonyema5 күн бұрын
How does setting password to never expire impact enabling password rotation ? Since u said to do one and not the other
@cloudscholars5 күн бұрын
The password change is a manual one. Should be implemented in a change management process notifying your security governance team.
@lestongreenidge91507 күн бұрын
"Really great video on Microsoft Entra Privileged Identity Management! The explanation of role activation and the way audit history works is spot on. It’s super easy to follow, even if you're not super deep into IT security yet. The presenter kept it simple but covered everything I needed to know about managing privileged identities in Azure. I’ll definitely be using this info in my work. Highly recommend for anyone dealing with Azure AD and needing a solid understanding of role management!"
@digiface7 күн бұрын
Surely there's log visualiser in azure you could have shown, instead of hunting around in json data?
@michaelimeh22688 күн бұрын
nice one,,
@cloudscholars8 күн бұрын
Thanks for watching. Please like and subscribe for more content.
@Absolut2579 күн бұрын
Excellent content. Azure Sentinel is amazing with all the automation capabilities and out of the box features that are very effective at improving the organization's security posture. Splunk was a total let down as it required a ton of inhouse content development and still doesn't hold a candle to Sentinel when it comes to incident response.
@meegz14911 күн бұрын
I can‘t use entra… I see entra id but I don‘t have all the info you have like client id. That's so weird, I don't understand but I fixed it somehow. I could not just go to entra right away. That took over an hour... Edit: Oh I didn't use my school account
@meegz14911 күн бұрын
You're so down with microsoft you're using edge 😁😁
@AyoubKhalfi-i7d12 күн бұрын
Great video. Thanks for sharing the information !
@cloudscholars11 күн бұрын
Glad it was helpful! Please subscribe to help my algorithm.
@rorycrabbe190513 күн бұрын
Hey, great series! Would you be able to show how you got "Highly Confidential" and "Confidential" to show the "all users" or "specific users" dropdowns?
@tydingslaw136714 күн бұрын
Is this dated? Arnt you not supposed to register the yubi key to the user part of my sign ins. Instead are you supposed to get it registed into azure via self surface?
@cloudscholars14 күн бұрын
This video was posted over a year ago. Things change constantly in the cloud. It’s a job in itself to update all my videos.
@Razzy00116 күн бұрын
This options is no longer available in Microsoft 365 defender portal 😢😢😢can someone help me out
@cloudscholars13 күн бұрын
What exactly are you looking to accomplish?
@beingcarehealthcare616018 күн бұрын
Thank you!
@jurajgalusciak311719 күн бұрын
U forgot about "anti-spam outbound policy" :D
@cloudscholars18 күн бұрын
oh yeah I didn't cover that in this video.
@AndresMartinez-y2w20 күн бұрын
Just subscribed, keep it up man!
@cloudscholars17 күн бұрын
Thanks for the sub!
@mikehynek24 күн бұрын
This is excellent !!!
@cloudscholars17 күн бұрын
Thanks Mike
@booranaveen827825 күн бұрын
Thanks
@cloudscholars25 күн бұрын
Glad it helped. Please subscribe for more content.
@vapemart-vapewareandejuice941728 күн бұрын
Do you think I can compare 173 gpos 😢??
@cloudscholars11 күн бұрын
I’ve never done that much at once! Lol sounds like fun
@shoaibawan797Ай бұрын
Great Job.
@cloudscholarsАй бұрын
Glad you liked. Please subscribe for more content.
@hafizrahman1509Ай бұрын
Does every Guest (self service access review) need a P2 license or any license
@AliciaNaharАй бұрын
SPOT ON!
@cloudscholarsАй бұрын
Glad you liked it. Please subscribe if you haven't. Helps me get my content out to more folks.
@simple-securityАй бұрын
what about using pim with purview roles?
@cloudscholarsАй бұрын
Great question. I never used it with purview roles. I know purview has its own roles.
@simple-securityАй бұрын
@@cloudscholars my guess is you create a custom role, assign an admin unit, add users to the admin unit, then in azure create a group, add pim to the group and add the admin unit to pim! But I could be wrong…
@cloudscholarsАй бұрын
Sounds like a good plan!
@willwhite1970Ай бұрын
A great example on AI NOT adding any value whatsoever. Complete waste of 4 minutes of your life.
@cloudscholarsАй бұрын
Most of my videos aren’t AI. Gave it a try to see how it would turn out. Appreciate the constructive criticism.
@ellisz5972Ай бұрын
How do you not have more subscribers. Great content !
@cloudscholarsАй бұрын
lol it’s all in god timing. Thank you for the kind words. Please like and subscribe.
@jimmywang100Ай бұрын
This is so helpful !! Well spoken and clear to understand..
@cloudscholarsАй бұрын
I'm glad you enjoyed it! Please like and subscribe if you haven't. Helps me get my content out to more folks.
@jimmywang100Ай бұрын
Great video .. thanks for this
@cloudscholarsАй бұрын
Glad you liked it! Please like and subscribe if you haven't. Helps me get my content out to more folks.
@GiovanniGOttoАй бұрын
Thanks for the video. You mentioned you will create a video to show how to set up a script to do this process. What is that video called?
@cloudscholarsАй бұрын
Sorry I didn’t get to it. Got caught up with projects.
@nelsonrivers8546Ай бұрын
Can you add a 6th video to this series to show how to use C# code that can go about programmatically picking up a key from key vault when "Automatic Key Rotation" is in effect ? I have no idea how to make use of "Automatic Key Rotation" from a console application or a Web API to pickup the most current key after key rotation.
@cloudscholarsАй бұрын
I would love to but I don’t know how to use C#.
@nelsonrivers8546Ай бұрын
@@cloudscholars Then, I can only theorize about your "Automatic Key Rotation"... can't use it, because there is no training to show how to retrieve the key from "Automatic Key Rotation" in Azure Key Vault.
@alexandreneivaАй бұрын
Hi, I would like to know how it's work domain on premises that we have ad sync with Azure Identity, but and we tried to change this sync it's stopped and not sync anymore. How can we deal with this? Second question is it necessary reauthentication? and there is one police created for Microsoft and I cannot delete
@CSTAMIIVideosАй бұрын
If a user already has legacy MFA in use will that have to be set back up after the migration?
@cloudscholarsАй бұрын
Do you have a MFA policy to block legacy authentication? This setting is different.
@CSTAMIIVideosАй бұрын
@@cloudscholars I don't, I am going to be migrating soon and wasn't sure if end users would have to set their MFA back up or not.
@CSTAMIIVideosАй бұрын
@@cloudscholars No there is not a policy to block legacy authentication
@cloudscholarsАй бұрын
@@CSTAMIIVideos you should block legacy authentication. If you have an application/device that needs to use it then set an exclusion for that device only.
@Vapor_SpaceАй бұрын
Excellent tutorial, thanks
@KevinKeurvelsАй бұрын
I can't set up the reset password playbook. Issue with the HTTP request that returns Forbidden. Will you make a video about that ?
@cloudscholarsАй бұрын
can you share me a screenshot?
@KevinKeurvelsАй бұрын
@@cloudscholars I sent you an email with that :)
@Prabhat_goswami92 ай бұрын
Very well explained.. thanks
@cloudscholars2 ай бұрын
Glad it was helpful!
@ForgottenKnight12 ай бұрын
13:00 - Privilege elevation turns into lateral movement and then into data exfiltration and before you know it, you're getting sued for many zeroes.
@andremyy2 ай бұрын
Solid information New subscriber
@cloudscholars2 ай бұрын
Thanks for the sub!
@VCityglobal2 ай бұрын
Well done, you explained things clearly throughout this series. Great audio and visuals too. I've subscribed!
@cloudscholars2 ай бұрын
Thank you!
@MyCCW3 ай бұрын
Got everything configured, AD synced, etc. The only thing I cannot seem to get to work is if I set a user account to "User must change password at next logon" on my on-prem DC, when they log into M365, it does not prompt them to change their password. I have been through every setting in Entra. Googled to high heaven, and M365 never prompts the end-user to change their password. We have a lot of sales people who are on the road and never step into the office so we want them to still change their password when our password policy kicks in. Any insight would be greatly appreciated.
@cloudscholars3 ай бұрын
I've run into the same problem as well. They don't get reminded because their technically not logging "on-prem". There is a script that I used in the pass that will check last time they changed their password and send out an email 14 days in advance(you can change the reminder) before the password expires. Unfortunately I don't remember the script but you will need to have it running on your domain controller and use a service account "[email protected]" that has access to send emails.
@srinivas16233 ай бұрын
Thank you so much could you do using azure resources terraform real time scnarios for interview purpose thank you once again😊
@sukhpreeetkaur67283 ай бұрын
what about the vnet description
@cloudscholars3 ай бұрын
You can add that if you want to.
@sukhpreeetkaur67283 ай бұрын
@@cloudscholars im getting error of size not available, no matter wat size i choose in east us
@cloudscholars3 ай бұрын
Can you get the size when you do it from the console rather then powershell?
@sukhpreeetkaur67283 ай бұрын
@@cloudscholars no at that time also vm configuration is failing
@fbifido23 ай бұрын
how to do email alert for this account ????
@cloudscholars3 ай бұрын
I have a video for this kzbin.info/www/bejne/qJjclIKmqshjf5osi=UsTXpS1SAgGV-6H_
@AbidSheikh-kg9tv3 ай бұрын
Excellent! very well explained about Azure Break Glass account and credential management.
@DoubleA-ARon3 ай бұрын
Again, simple and to the point!!
@cloudscholars3 ай бұрын
Glad it helped. Please hit the like button for me. Helps with the algorithm.
@poloqaz3 ай бұрын
many thanks for the video; it is really simple and easy to follow. thank you!
@cloudscholars3 ай бұрын
Glad it was helpful!
@meegz14911 күн бұрын
Cute kitty!
@DoubleA-ARon3 ай бұрын
Simple and to the point!
@cloudscholars3 ай бұрын
That’s why I do it. Pleas like and subscribe if you haven’t.
@balduberdriver3 ай бұрын
So if you have like 300 kay vaults you download them one by one manually?
@cloudscholars3 ай бұрын
I’ve never had to manage 300 key vaults before. May have to find another route for what you need.
@sajidsid3 ай бұрын
I'm an IT professional from the 90s, and unlike before, there's now an overwhelming amount of information available. However, finding the time to upskill while maintaining a work-life balance is challenging. Creating concise and to-the-point videos is incredibly valuable and appreciated. Thank you for this video
@cloudscholars3 ай бұрын
Thank you for the kind words. Please like and subscribe if you haven’t done so yet. This helps me with the algorithm.
@Bhanusri-LakshmiDokka3 ай бұрын
i think when you deleted locations under Conditions > Network condition got deleted
@cloudscholars3 ай бұрын
This was a walk thru explanation. My goal was more to explain setups and talk through it.