Azure – Joachim Løe

Automatically roll over the Kerberos decryption key Azure AD Connect SSO

Joachim

February 23, 2018

AzureAD

Its’ highly recommended to roll over the kerberos key for Azure AD Connect SSO computer account every 30 days. There is no feature to enable auto roll over of this key. Continue reading Automatically roll over the Kerberos decryption key Azure AD Connect SSO

Install Azure File Sync Agent (preview) on Windows Server 1709

Joachim

February 22, 2018

No Comment

Azure File Sync

!!NOT SUPPORTED!!
Only Windows Server 2012 R2 and Windows Server 2016 with full Ui is currently supported by Microsoft.
Do not recommend this for production environments.
Continue reading Install Azure File Sync Agent (preview) on Windows Server 1709

Dynamic Groups in Azure AD

Joachim

January 20, 2018

No Comment

AzureAD

https://docs.microsoft.com/en-us/azure/active-directory/active-directory-groups-dynamic-membership-azure-portal
Continue reading Dynamic Groups in Azure AD

Remove Azure MFA configuration for a specific user

Joachim

January 17, 2018

No Comment

Azure

How to reset a users MFA configuration in Azure.
After this is executed, user would need to enroll/first time setup for Azure MFA if required.

#Connect to Microsoft Online Services
Connect-MsolService

1 2	#Connect to Microsoft Online Services Connect-MsolService

#Remove Azure MFA config for a specific user
$AzureMFA=@()
Set-MsolUser -UserPrincipalName "username@domain.com" -StrongAuthenticationMethods $AzureMFA

#Remove Azure MFA config for a specific user

$AzureMFA=@()

Set-MsolUser -UserPrincipalName "[email protected]" -StrongAuthenticationMethods $AzureMFA

Disclaimer: All scripts and references on this blog are offered “as is” with no warranty. These scripts are tested in my environment, it is recommended that it is tested in a test environment before using in production.