Browsed by
Category: Conditional Access

How to deploy an Always On VPN to Azure VPN Gateway with Conditional Access

How to deploy an Always On VPN to Azure VPN Gateway with Conditional Access

Comments 20 comments

In a previous blog post, I’ve published a way to configure and deploy an Always On VPN on Intune-manage devices, connecting to an Azure VPN Gateway. The goal was to achieve an Always On VPN deployment with cloud-native solutions more easily than it would be using their traditional counterparts. However, the solution presented was with the use of self-signed certificates, which generally should not be used from a security point of view. I was triggered by a comment from one…

Read More Read More

Why it is important to block access to Azure AD PowerShell

Why it is important to block access to Azure AD PowerShell

Comments 2 comments

In one of my recent blogs, I’ve published a tool to use Intune as your e-mail signature manager for Outlook. This tool uses the AzureAD PowerShell module. Leveraging Single Sign On (SSO) on Azure AD joined devices, it queries for the user’s contact information of the user that’s signed in on the device. In doing so, I found that, as a non-administrative user, I was also able to query the contact information of all other users. Dumping the Azure AD…

Read More Read More