Configure Microsoft Sentinel

Configure Azure Sentinel

Microsoft Sentinel is a SIEM (Security Information and Event Management) and SOAR (Security Orchestrated Automated Response) solution of Microsoft. She permit alert detection, threat visibility, proactive hunting, and threat response.

Continue reading

Protect Azure AD Connect

Protect Azure AD Connect

Today, it is important to respect the policy of least privilege. We had the ability to configure the Active Directory connector for Azure AD Connect with user account. User account without admin right. However, the Azure AD connector still needed an Azure AD account with the Global Admin role.

Continue reading

Cloud Connect for Enterprise

cloud connect for enterprise allows companies to have an off-site backup and delivery solution. This allows you to have all backups from different sites to a single location (a private or public datacenter).

Continue reading

Backup Copy

Backup Copy

The Backup Copy feature allows you to create multiple instances of the same backup file. This file is then copied to a second location (fairly regularly off-site). Since the file on the secondary location has the same format as the primary backup, it is possible to restore from the secondary site directly. This solution is very useful in the event of a disaster at the primary site. The Following types of backup has supported

Continue reading

Azure AD SSO Key

Azure AD SSO Key

Azure AD Seamless SSO permit to enable SSO (Single Sign On) with Azure AD/Office 365 portal. When users try to connect to portal, their computer computer is be able to carry out Kerberos authentification to pass credential via the web browser. The password is not requested from the user.

Continue reading

Restore backup to Azure

PRA with Azure

Veeam PN for Azure

This solution is a free solution at Veeam. I use Veeam PN for more security but it is not mandatory to restore VMs in Azure.It brings new features to the Veeam solution by allowing restoration in Azure or creation of a VPN connection. It can be used for the following purposes :

  • Create site-to-site VPN betweeen company office and Microsoft Azure to connect VM restored in Azure
  • Create point-to-site VPN between remote computers and Microsoft Azure to connect VM restored in Azure
  • Allow connection to the corporate network to a remote user via Microsoft Azure
Continue reading

Defender for Identity

Defender for Identity

Microsoft Defender for Identity permit to monitor Azure Active Directory and Active Directory infrastructure. You can easily analyses the data of potential attacks. A Defender for Identity sensor is installed on domain controllers or AD FS servers to access the event logs of these servers. The logs and network traffic will be analyzed by the sensor and then the information needed by Microsoft Defender for Identity will be sent to the Defender for Identity cloud service.

Continue reading

Hardened Repository

Hardened Repository

The Hardened backup repository is a backup repository who contain an option for immutability. This feature permit to protect data against data loss due to malware. Indeed, deletion of data is temporarily prohibiting. Note that only Linux backup repository provices the immutability option.

Continue reading

Azure AD Password Protection

Azure AD Password Protection

Azure AD Password Protection it’s an interested feature. He permit to secure your authentification by deny simple password. Microsoft update frequently a list of simple password. When you enable this feature, this list is used for deny user password if it’s on this list. This verification is performed when the password is modified by user or resetted by IT Admins

Continue reading

Configure Microsoft Launcher

Microsoft Launcher

IT Admins can customize home screens of managed devices. we can configure wallpaper, applications and icon positions. The appearance of Android devices is thus standardized.

Continue reading