Dec 22

Use Remote Help

use remote help with Intune

Remote help is a tool included in Microsoft Intune, he permit to get assistance at user connected on Windows 10 computer enrolled in Microsoft Intune. Microsoft Intune subscription is required. The workstation must perform Windows 10 or Windows 11. Very important ! Remote help app must be installed on the workstation.

Network Prerequisites

The tool Remote help use port 443 for communicates and connects to the Remote Assistance Service at https://remoteassistance.support.services.microsoft.com. Note that traffic is encrypted with TLS 1.2. All workstation (helper and sharer) must be access to the following endpoint.

Continue reading

Nov 22

Configure Microsoft Sentinel

Configure Azure Sentinel

Microsoft Sentinel is a SIEM (Security Information and Event Management) and SOAR (Security Orchestrated Automated Response) solution of Microsoft. She permit alert detection, threat visibility, proactive hunting, and threat response.

Continue reading

Nov 07

Protect Azure AD Connect

Protect Azure AD Connect

Today, it is important to respect the policy of least privilege. We had the ability to configure the Active Directory connector for Azure AD Connect with user account. User account without admin right. However, the Azure AD connector still needed an Azure AD account with the Global Admin role.

Continue reading

Aug 26

Cloud Connect for Enterprise

cloud connect for enterprise allows companies to have an off-site backup and delivery solution. This allows you to have all backups from different sites to a single location (a private or public datacenter).

Continue reading

Jul 28

Backup Copy

Backup Copy

The Backup Copy feature allows you to create multiple instances of the same backup file. This file is then copied to a second location (fairly regularly off-site). Since the file on the secondary location has the same format as the primary backup, it is possible to restore from the secondary site directly. This solution is very useful in the event of a disaster at the primary site. The Following types of backup has supported

Continue reading

May 27

Azure AD SSO Key

Azure AD SSO Key

Azure AD Seamless SSO permit to enable SSO (Single Sign On) with Azure AD/Office 365 portal. When users try to connect to portal, their computer computer is be able to carry out Kerberos authentification to pass credential via the web browser. The password is not requested from the user.

Continue reading

May 21

Restore backup to Azure

PRA with Azure

Veeam PN for Azure

This solution is a free solution at Veeam. I use Veeam PN for more security but it is not mandatory to restore VMs in Azure.It brings new features to the Veeam solution by allowing restoration in Azure or creation of a VPN connection. It can be used for the following purposes :

  • Create site-to-site VPN betweeen company office and Microsoft Azure to connect VM restored in Azure
  • Create point-to-site VPN between remote computers and Microsoft Azure to connect VM restored in Azure
  • Allow connection to the corporate network to a remote user via Microsoft Azure
Continue reading

Apr 13

Defender for Identity

Defender for Identity

Microsoft Defender for Identity permit to monitor Azure Active Directory and Active Directory infrastructure. You can easily analyses the data of potential attacks. A Defender for Identity sensor is installed on domain controllers or AD FS servers to access the event logs of these servers. The logs and network traffic will be analyzed by the sensor and then the information needed by Microsoft Defender for Identity will be sent to the Defender for Identity cloud service.

Continue reading

Apr 05

Hardened Repository

Hardened Repository

The Hardened backup repository is a backup repository who contain an option for immutability. This feature permit to protect data against data loss due to malware. Indeed, deletion of data is temporarily prohibiting. Note that only Linux backup repository provices the immutability option.

Continue reading

Mar 24

Azure AD Password Protection

Azure AD Password Protection

Azure AD Password Protection it’s an interested feature. He permit to secure your authentification by deny simple password. Microsoft update frequently a list of simple password. When you enable this feature, this list is used for deny user password if it’s on this list. This verification is performed when the password is modified by user or resetted by IT Admins

Continue reading