Category Archives: Identity & Access Control

Azure ARM Template for VM Creation with AAD Sign-in

Microsoft recently released a public preview of a new capability in Azure allowing to sign in to Windows virtual machine using Azure AD account. Previously you would need several steps to complete the deployment of joining your virtual machine to … Continue reading

Posted in Identity & Access Control | Tagged , | 1 Comment

Azure Firewall Role-Based Access Control

Role-based access control in Azure allows you to control fine-grained permissions to specific resources. In the scenario of controlling Azure Firewall, you would need to have custom role definition to give which permission to whom. In this article, let’s have … Continue reading

Posted in Identity & Access Control, Security Operation | Tagged , | 1 Comment

Getting Azure AD access token via REST Call

Part of Azure experiment, one of my colleagues started playing with Azure API Management last week. He was interested with what I introduced about the service, including API gateway, API publishing portal to readable policies to manipulate inbound request before … Continue reading

Posted in Identity & Access Control | Tagged , | 1 Comment

Connect to Azure AD using Microsoft Account with PowerShell

Microsoft Account is considered not an internal account given to Microsoft employee. Microsoft account is associated to external services such as Live Mail, Skype, Xbox or so on. When connecting to Azure AD with Microsoft Account (e.g. LiveID) , you … Continue reading

Posted in Identity & Access Control, Security Automation | Tagged | Leave a comment

Brute-force attack mitigation on Microsoft Azure

Brute-force attack is simply┬áto continuously attempt to discover your password by combining all possible passwords it can guess. That said, human can guess a password by trying to brainstorm all possibilities such as birthday, girlfriend name, a memorable location or … Continue reading

Posted in Identity & Access Control | Tagged , | 1 Comment

Enable Multi-factor authentication on the Azure Management Portal

Multi-factor authentication means by its name, giving one more step of authentication to protect your account. ┬áThe authentication step can be a time-based one-time password sent from a cloud authentication provider such as Google Authenticator, Microsoft Authenticator. The authentication step … Continue reading

Posted in Identity & Access Control | Tagged | Leave a comment