@olavt.bsky.social
"We cannot solve our problems with the same thinking we used when we created them." -Albert Einstein Cloud dude @Sparebanken Norge. Cloud Security MVP (18 years). Podcasting Microsoft cloud and related stuff: https://www.youtube.com/@bluescreenbrothers
Documentation of who has access to the secrets and certificates in your Azure Key Vault might for some be a requirement and other something they just should have control over.
Together with Github Copilot I created this script for the job
(covering both rbac and policy)
github.com/OTvedt/Scrip...
Shared: Windows Sandbox replaced all my VMs for testing software ift.tt/2GQ3Hb6
#WinObsWiKi
The hunt for expiring certs and secrets on your Entra/Azure apps where the topic when @goodworkaround.com and I did our newest podcast.
We share where to find them (some are well hidden), cmd lines and a script that help monitor and alert before they expires and cause problems
youtu.be/1TjedH5o-QU
@alexsolaat.bsky.social and I had a talk with Chauncey Larsen from Microsoft Surface team about #WindowsRecall, #Copilot+ and AI in #Windows
Does the operative system have any impact on your AI experience?
youtu.be/YXqnfTUY95c
@alexsolaat.bsky.social and I had a talk with Chauncey Larsen from Microsoft Surface team about #WindowsRecall, #Copilot+ and AI in #Windows
Does the operative system have any impact on your AI experience?
youtu.be/YXqnfTUY95c
The hunt for expiring certs and secrets on your Entra/Azure apps where the topic when @goodworkaround.com and I did our newest podcast.
We share where to find them (some are well hidden), cmd lines and a script that help monitor and alert before they expires and cause problems
youtu.be/1TjedH5o-QU
#Entraid preview out: Convert Source of Authority of synced Active Directory groups to the cloud.
Or easier said, you can now convert Active directory groups so you can change and manage them in EntraID
How to w/demos shown by @goodworkaround.com and me in our newest episode
youtu.be/_K3k5_A44sM
Brand new problem with Windows Sandbox, after updates in September. The manual and PowerShell solution do not longer work, but luckily the good old "Netsh" command still work.
youtu.be/XX3fdBptKqQ
Last day before 2 weeks vacation. When coming back I will start making some more Entra App videos. I think secret and certificate will be first focus
In the mean time enjoy one off our "classics"
youtu.be/f5iXXi0prbA
The Microsoft Defender for Cloud Ninja training have been updated
Some new:
- Agentless code scanning for GitHub and Azure DevOps (preview)
- Protecting Cloud Storage in the Age of AI
- Microsoft AI Security Story: Protection Across the Platform
- And more
techcommunity.microsoft.com/blog/microso...
Who are hosting a birthday party for Windows 10 today?
π₯³
10 Years today since it was released. Is that the reason for the extended support?
Ent. Extended Security Updates (ESU) Win 10:
learn.microsoft.com/en-us/window...
Consumer Ext Security Updates (ESU):
support.microsoft.com/en-us/window...
Sometimes I need to hunt Azure to check if a specific group has permissions some where in all my subscriptions.
With help from Co-pilot in VS Code I now have this script. Listing both "Active" and "Eligible" permissions and exporting it into a CSV file
github.com/OTvedt/Scrip...
Renewed for the 18th time, still excited and nervous when waiting for that e-mail
Big thanks to @alexsolaat.bsky.social, @tinastenderup.bsky.social, and the entire #MVPBuzz family
Great news. Soon (if not already) your Defender for Office 365 will automatically detect and block email bombing attacks.
www.bleepingcomputer.com/news/securit...
Okay folks, your going to want to bookmark this π signin.merill.net
Over the weekend I vibe coded a tool I'm calling Microsoft Entra Sign-in URL Builder
This is something I've been wanting to build for some time and inspiration struck.
Trying to clean up old "mistakes". Default expiration dates for new secrets in Entra App registrations were at one point set to the years 2299 and 2100. Created a script that lists these so I can clean them up.
And also check if there is any with 2 years+ too expiration
github.com/OTvedt/Scrip...
I am a heavy user of Windows Sandbox, but I (and many more) have had the "No network" problem.
It is in fact just a good old DNS setting problem. I created a short video on how to fix it manually or with a configuration file.
youtu.be/XX3fdBptKqQ
I am a heavy user of Windows Sandbox, but I (and many more) have had the "No network" problem.
It is in fact just a good old DNS setting problem. I created a short video on how to fix it manually or with a configuration file.
youtu.be/XX3fdBptKqQ
Updated my Entra PIM roles activation script to include the possibility of selecting for how long the roles should be active.
The script will list all roles you are eligible to active and highlight the once already active
github.com/OTvedt/Scrip...
Struggling with Windows Sandbox not having network access?
It is most likely related to DNS trouble, set it manually or create a Sandbox config file (.wsb) that configure the DNS setting during startup every time.
On the "Microsoft Account security settings" you can remove the device if it get "lost". When setting up you will get recovery codes that you can use if you don't have other ways of logging in (Take care of thise, you can generate new once now if you have lost them ;-)
05.05.2025 12:29 β π 1 π 0 π¬ 1 π 0
New private Microsoft accounts gets more safe with passkeys as default.
You get both that nice and easy passwordless experience and enhancing the security
thehackernews.com/2025/05/micr...
How to enable on your exiting account? (personal and work account)
support.microsoft.com/en-us/accoun...
Security from chip to cloud are the topic on #BlueScreenBrothers latest episode. Focused on #Microsoft Surface, but the advices should be followed on any hardware vendors equipment.
@alexsolaat.bsky.social youtu.be/s8Awpscsgjk
During #MVPSummit @alexsolaat.bsky.social meetup with @microsoft.com Surface Program managers Frank Buchholz and Chauncey Larson. They recorded a podcast about AI technologies and Microsoft Surface
Check it out here:
youtu.be/JTluLkcE5m4
#MVPBuzz
@alexsolaat.bsky.social and Anders are meeting up with Briand Sandersonβ―(Microsoft) again during the Microsoft MVP Summit. And in this episode there is lovely mix of old time #Mainframe and modern #CloudPC
#MVPBuzz #MVPSummit
youtu.be/2bmIXQtPWlA
A brand new episode out:
With Briand Sandersonβ―(Microsoft), @alexsolaat.bsky.social and Anders Kristiansen (Storebrand) exploring the latest trends, risks, and ethical dilemmas
Discover how to stay safe and secure in the digital age, from browser extensions to AI tools.
youtu.be/C2DOccFC2RU
Needed to figure out if I had any Azure Classic Admins left (unsupported since 31.August 2024) in my subscriptions
Found a script (wmatthyssen.com) and modified it to suit my taste:
github.com/OTvedt/Scrip...
More info from Microsoft here:
learn.microsoft.com/nb-no/azure/...
New episode out!
@goodworkaround.com and I am looking in to #Azure cross tenant use of managed identities without having to use shared #secrets or #certificates that expire
Check it out, and follow our channel for more exiting nerdy stuff!
youtu.be/oV9jHjNyqfk
New episode out!
@goodworkaround.com and I am looking in to #Azure cross tenant use of managed identities without having to use shared #secrets or #certificates that expire
Check it out, and follow our channel for more exiting nerdy stuff!
youtu.be/oV9jHjNyqfk
@goodworkaround.com and I are exploring Managed identities through demonstrations and real-life examples using logic apps and automation accounts.
The tasks of setting and verifying access permission are also thoroughly explored
Check it out here(and follow for more)
www.youtube.com/watch?v=spb-...