This website is a virtual proof that I'm awesome http://havardkristiansen.com/ If "I let my users consent to whatever the appliations ask for" is your strategy - please read on - Vasil Michev wrote a good article back in 2021 about “Inventorying Permissions to Azure AD Apps”. The link and procedure on how to check access: https://practical365.com/inventorying-azure-ad-apps-and-their-permissions/ The Powershell script that is beeing used can be found here: https://github.com/michevnew/PowerShell/blob/master/app_Permissions_inventory_GraphAPI.ps1 The article still holds water today. I see far to many organization... Tue, 11 Jul 2023 00:00:00 -0400 http://havardkristiansen.com/2023-07-11-How-do-you-handle-Enterprise-Application-and-API-permission/ http://havardkristiansen.com/2023-07-11-How-do-you-handle-Enterprise-Application-and-API-permission/ There is a reason why you should have it - Multifactor authentication is a hot topic. And so is the increase in securing organization accounts. Microsoft are providing the ability to utilize SMS, email, phone call or app authentication as a second factor in secure logins. Follow this link to how to “Set up multi-factor authentication”: https://docs.microsoft.com/en-us/microsoft-365/admin/security-and-compliance/set-up-multi-factor-authentication?view=o365-worldwide But what do... Sat, 10 Sep 2022 00:00:00 -0400 http://havardkristiansen.com/2022-09-10-Multifactor-authentication-and-break-the-glass-account/ http://havardkristiansen.com/2022-09-10-Multifactor-authentication-and-break-the-glass-account/ Each post also has a subtitle - This is a demo post to show you how to write blog posts with markdown. I strongly encourage you to take 5 minutes to learn how to write in markdown - it’ll teach you how to transform regular text into bold/italics/headings/tables/etc. Here is some bold text Here is a secondary... Fri, 28 Feb 2020 00:00:00 -0500 http://havardkristiansen.com/2020-02-28-test-markdown/ http://havardkristiansen.com/2020-02-28-test-markdown/