https://byteben.com/categories/identity/Identity - Category - bytebenHugo -- gohugo.ioenben@byteben.com (Ben Whitmore)ben@byteben.com (Ben Whitmore)Mon, 13 Apr 2020 00:00:00 +0000https://byteben.com/bb/azure-ad-groups-in-a-nutshell/Mon, 13 Apr 2020 00:00:00 +0000ben@byteben.com (Ben Whitmore)https://byteben.com/bb/azure-ad-groups-in-a-nutshell/Not the longest post in the world but “Groups” are going to be quite pivotal in how you manage users and devices in Azure AD. In this post we will cover the basic Azure AD group and membership types. We will also look at how we can create Groups in both the Azure AD Portal and by using PowerShell.

]]>https://byteben.com/bb/azure-ad-application-proxy-accessing-your-internal-web-apps-from-the-internet/Sat, 09 Nov 2019 00:00:00 +0000ben@byteben.com (Ben Whitmore)https://byteben.com/bb/azure-ad-application-proxy-accessing-your-internal-web-apps-from-the-internet/<p>Welcome to this blog post on Azure Active Directory Application Proxy. This post comes off the back of an awesome day at the East of England Microsoft User Group #EEMUG. In this post we will take you through the fundamentals and the requirements of Azure AD Application Proxy and how to publish your internal Web Apps to Internet connected users.</p>https://byteben.com/bb/co-management-series-merging-the-perimeter-part-4-configuring-hybrid-azure-ad/Mon, 02 Sep 2019 00:00:00 +0000ben@byteben.com (Ben Whitmore)https://byteben.com/bb/co-management-series-merging-the-perimeter-part-4-configuring-hybrid-azure-ad/<p>In this part of the series we will look at configuring Hybrid Azure AD before we can get our clients into a Co-managed state. First we will install Azure AD Connect and then we will enable the SCCM Client Setting to facilitate the Hybrid Join.</p>https://byteben.com/bb/get-users-from-azure-ad-with-a-large-number-of-registered-devices/Tue, 16 Apr 2019 00:00:00 +0000ben@byteben.com (Ben Whitmore)https://byteben.com/bb/get-users-from-azure-ad-with-a-large-number-of-registered-devices/<h3 id="the-challenge">The Challenge</h3> <p>One of the challenges when managing an Azure AD Hybrid Join implementation is monitoring the number of devices registered to each Azure AD user.</p>https://byteben.com/bb/windows-10-hybrid-azure-active-directory-join-for-federated-domains/Sun, 14 Apr 2019 00:00:00 +0000ben@byteben.com (Ben Whitmore)https://byteben.com/bb/windows-10-hybrid-azure-active-directory-join-for-federated-domains/<h3 id="what-is-adfs">What is ADFS?</h3> <p>Active Directory Federation Services (ADFS) provides a secure mechanism to authenticate users, accessing applications (often in the cloud), using Active Directory credentials when Windows Integrated Authentication (WIA) is not possible.</p>https://byteben.com/bb/office-365-migration-adding-additional-upns/Sat, 14 Jul 2018 00:00:00 +0000ben@byteben.com (Ben Whitmore)https://byteben.com/bb/office-365-migration-adding-additional-upns/<p>In my previous post <a href="https://byteben.com/bb/office-365-migration-user-attribute-discovery-export-powershell/" target="_blank" rel="noopener noreffer ">office-365-migration-user-attribute-discovery-export-powershell/</a> I described the importance of matching your user UPN with their primary SMTP Address.</p>https://byteben.com/bb/office-365-migration-user-attribute-discovery-and-export-using-powershell/Wed, 04 Jul 2018 00:00:00 +0000ben@byteben.com (Ben Whitmore)https://byteben.com/bb/office-365-migration-user-attribute-discovery-and-export-using-powershell/Identity is key. I cannot emphasise this enough as you begin to move workloads into Exchange Online, SharePoint Online and Skye for Business Online. One of the first pieces of advice you should have been given is the user UPN should match the primary SMTP address. Here is why:-

1. The UPN in Office 365 becomes the default SIP address in Skype for Business Online.
2. Office (inc Office for IOS) and OneDrive require the UPN to match the email address.

]]>