All about Microsoft 365
This is an updated version of an article I released back in 2022. The task is simple – report on the set of Administrative units a given Entra ID user is a member of. Or for all users in the tenant, if you want. We explore how to do this …
Continue readingReporting on user’s Administrative unit membership in Entra ID
Back in 2023, Microsoft released the Lifecycle workflow feature, which we covered in this article. Lifecycle workflows are one of the most impactful non-security related features we’ve gotten in the past few years, plus the fact that Microsoft released it with Graph API support from the get go made me …
Continue readingSome (not so) recent improvements with Lifecycle Workflows in Entra
I’ve seen a few questions lately on how to programmatically create a Conditional Access policy with Authentication strength as one of the “grant” controls. For some reason, the documentation doesn’t directly address this scenario, and in turn people seem to get confused, when in fact, it’s rather simple. So in this …
Just before Christmas 2024, Microsoft released a set of new, more granular Graph API permissions to address some of the most common user-related scenarios. It is the type of change I’d expect to read about in a blog article or something, but for some reason it was released without much …
The “Migrate Service Principals from the retiring Azure AD Graph APIs to Microsoft Graph” Entra ID recommendation has created a bit of a stir recently, so I finally got to put an article around it. Read on to find out how to handle any of the “impacted resources” found in this recommendation, more specifically, which entries to ignore. …