Tag: Microsoft Entra Page 1 of 3

Are you looking for information about Microsoft Entra? In this archive you will find all our posts about Microsoft Entra.

SMB over QUIC is a network protocol used by Windows. It allows secure, shared use of resources such as files on the network. To use SMB (Server Message Block) without QUIC, TCP port 445 is required. Some Internet providers block TCP port 445 for security reasons. Therefore, it is not possible to connect to a file share on Azure by SMB successfully.

To bypass the blocking of TCP port 445, there are several options to choose from, including the following:

VPN (Virtual Private Network), e.g. AlwaysOnVPN
Third party software, e.g. MyWorkDrive
SMB over QUIC (Quick UDP Internet Connection)

Windows LAPS in Microsoft Intune

By Oliver Müller

On 1. May 2023

In Microsoft 365

Windows LAPS (Local Administrator Password Solution) provides centralized, simple and secure management of local administrator passwords in Microsoft Intune. Each device receives its own temporary administrator password. Windows LAPS automatically manages the administrator passwords in terms of expiration and rotation. Local administrator passwords are stored in either Azure Active Directory or local Active Directory.

Windows LAPS thus offers, for example, higher protection against pass-the-hash and lateral traversal attacks.

Passwordless Sign In with Azure AD and YubiKey (FIDO2)

By Oliver Müller

On 17. December 2022

In Microsoft 365, Microsoft Azure

Passwordless Sign In with a FIDO2-enabled security key such as a YubiKey in conjunction with Azure AD provides high security while maintaining ease of use. There is no longer any need to enter a username and password.

For users with private mobile devices who do not want to install the Microsoft Authenticator app, a security key from YubiKey offers a good alternative.

This tutorial sets up a YubiKey 5 security key for passwordless sign in to Microsoft Azure and Microsoft 365 services.

Microsoft Authenticator App: Improve security with number matching

By Oliver Müller

On 17. September 2022

In Microsoft 365, Microsoft Azure

The use of multi-factor authentication is considered one of the most secure methods to protect an account and is therefore recommended by pretty much every provider by now. Due to this fact, the user receives many multi-factor authentication requests every day, which are probably no longer considered carefully and are approved out of habit.
Microsoft introduces number matching, a method that can prevent blind approval of the request.

For existing users with the Microsoft Authenticator App, number matching will be enabled by default on February 27, 2023.
The following tutorial will immediately enable number matching and therefore increase login security.

Microsoft Authenticator App: Improve security with app and location information

By Oliver Müller

On 27. August 2022

In Microsoft 365, Microsoft Azure

Multi-Factor Authentication improves security of every identity. Microsoft is working constantly to improve the security of their Microsoft 365 and Microsoft Azure accounts.
A new feature has been added to the Microsoft Authenticator App, which displays additional information in multi-factor authentication approval requests:

which application sent the approval request
sign-in location of the approval request

Freshly brewed with Microsoft Azure and Microsoft 365

Tag: Microsoft Entra Page 1 of 3

SMB over QUIC and Azure Server: empowering secure and lightning fast file sharing

Windows LAPS in Microsoft Intune

Microsoft Authenticator App: Improve security with number matching

Microsoft Authenticator App: Improve security with app and location information