Posts

What Microsoft 365 E7 Means for Identity

-
Hey there! So if you have been active on LinkedIn for the past couple of days, you probably saw some rumors about a new licensing tier making it's way into Microsoft. Well, those rumors have since been confirmed by Microsoft to be true and in good ol' content creator fashion, you KNOW I had to make a post about it. Particularly, I want to talk about what this means for identity and what you can expect with this new tier in the Enterprise licensing model. For those in the identity space, E7 provides great new features that give admins the ability to avail of things not traditionally found in other enterprise license tiers below it. Without further ado, let's break into it! What Exactly Is E7 Bringing to the Identity Table? E7 isn’t just “E5 with extra seasoning.” It introduces capabilities that meaningfully shift how organizations can approach identity governance, insider risk, and privileged access. For identity folks, this tier finally bundles together a set of controls th...
Post a Comment
Read more

Account Recovery Made Simple with Entra

-
Image
We have all been there: you have a user that needs to have their account recovered, whether it be over the phone, an email, carrier pigeon, etc. However, we do not have a surefire way to verify their identity. Sure, you can send a follow-up email and ask for them to include their photo ID, assuming you're bold enough to click on that attachment that is definitely the real person and not malware. Once you've done that, now you have five more tickets that have just piled up in your queue and your boss wants to know about that project you're working on. Sound familiar? Well, this is a common issue that plagues a lot of IT teams and results in the loss of productivity as well as revenue. 30% to be precise. Only if there was a way to take the administrative load off of the IT staff, and give control back to the user, all within a compliant environment... Look no more! Now, Microsoft has unveiled the next step in verifying user identities by using real credentials and facial reco...
Post a Comment
Read more

How To Use App Registration Deactivation

-
  If you’ve been following the steady stream of updates coming out of Entra, you may have noticed a particularly powerful addition to the Microsoft Graph API: the ability to deactivate app registrations. It’s a deceptively simple feature with major implications for anyone responsible for managing the ever‑growing list of applications inside their organization. In this post, I’ll break down why this matters, how it can help you regain control of your app landscape, and—most importantly—how to automate it. I spent a good chunk of time figuring this out so you don’t have to. So… what exactly is this new feature? In short: you can now cleanly deactivate an app registration without deleting it. Historically, if you needed to stop an app from being used in your tenant, your only real option was to delete the service principal. That worked fine for throwaway apps, but for anything with configuration, history, or future relevance, deletion was a non‑starter. You either lived with the r...
Post a Comment
Read more