Application management policies add support for Identifier URIs restrictions

Few years back, Microsoft released a set of new policy objects, allowing us to impose restrictions on the credentials used for service principal and application objects. In a nutshell, an application management policy can be used to control the type of credentials that can be configured for any given SP/application …

Continue readingApplication management policies add support for Identifier URIs restrictions

Legacy MFA settings in the Entra portal and how to control them programmatically

Did you know that the legacy MFA settings have been “ported” to the Entra Admin portal? Not only you can access and manage them therein, but you can also take advantage of this integration in order to enable programmatic access to said settings. Read the article to find out how! …

Continue readingLegacy MFA settings in the Entra portal and how to control them programmatically

Few notes on disabling access to PowerShell in Exchange Online

A question over at Experts Exchange prompted me to refresh my memory on the process of disabling access to PowerShell for Exchange Online users. The proper way to do that, as detailed by Tony in this article, is to toggle the corresponding flag on the user object. Microsoft is however …

Continue readingFew notes on disabling access to PowerShell in Exchange Online

First look at the analyzedEmails Graph API endpoint

Today’s article will be about the newly introduced /analyzedEmails Graph API endpoint, which in a nutshell is a lightweight Threat explorer implementation. While the new API fails to measure up to the robust tool that Threat explorer is, this is not to say it has no merit, as it does …

Continue readingFirst look at the analyzedEmails Graph API endpoint