Using the Azure AD Connect Group Writeback feature to synchronise cloud groups to on-premises.
Posts by Year
Azure AD Application Identity Provisioning to On-Premise Applications that lack SCIM support.
Using PS and the .Net MailMessage class to create rich content html emails for services such as AWS SES.
Empower newly onboarded users to utilise SSPR without needing to contact the IT Service Desk to set their first password.
Microsoft Graph using the Invoke-RestMethod
A complete listing of Microsoft Graph OAuth 2 Permissions including their IDs and associated descriptions.
A complete listing of Microsoft Graph App Roles including their IDs and associated descriptions.
This feature facilitates cross-tenant inbound and outbound access control for Guest users.
The User Experience for Access Packages.
These settings outline the actions to perform on external users who no longer hold any assigned entitlements.
A Connected Organisation has an established relationship for Azure Identity Governance.
An access package is a logical grouping of resources, ideally built around defined business roles at a granularity suitable for scalability.
Finding Azure AD Application Registrations with expired credentials.
A series of high-level steps for migrating an Azure AD O365 tenant with its users and data.
A list of OAuth 2 permissions (scopes) for the Azure Portal.
Analysing Application and Service Principal objects.
Retrieving a list of inactive Azure AD Guest users.
Calling Microsoft Graph from an Automation Account or LogicApp under an Azure Managed Identity.
Example use of the PowerShell MSAL module.
A list of inbuilt delegated permissions (scopes) utilised by Azure PowerShell modules.
Azure B2B (Guest) users; their means of entering the tenant and their lifecycle attributes.
A means of enabling and disabling AD FS federation on an Azure AD custom domain name.
A method to set mailbox regional configuration.
A method to increase the maximum receive sizelimit on a specific mailbox
How AAD Connect and the ImmutableID attribute are related.
A collection of PlanIds and SkuIds with their respective friendly names as shown in the Azure Portal.
Getting a list of domains used by Guest users in an Azure AD tenant.
Creating a random password string using only PowerShell and .NET.
This example shows the means to call Exchange on-premises from a Hybrid Worker.
A series of useful audit filters that may be used against the Microsoft Graph auditLogs endpoint.