Its’ highly recommended to roll over the kerberos key for Azure AD Connect SSO computer account every 30 days. There is no feature to enable auto roll over of this key. Read more “Automatically roll over the Kerberos decryption key Azure AD Connect SSO”
Install Azure File Sync Agent (preview) on Windows Server 1709
!!NOT SUPPORTED!!
Only Windows Server 2012 R2 and Windows Server 2016 with full Ui is currently supported by Microsoft.
Do not recommend this for production environments.
Read more “Install Azure File Sync Agent (preview) on Windows Server 1709”
Dynamic Groups in Azure AD
Remove Azure MFA configuration for a specific user
How to reset a users MFA configuration in Azure.
After this is executed, user would need to enroll/first time setup for Azure MFA if required.
|
1 2 |
#Connect to Microsoft Online Services Connect-MsolService |
|
1 2 3 |
#Remove Azure MFA config for a specific user $AzureMFA=@() Set-MsolUser -UserPrincipalName "username@domain.com" -StrongAuthenticationMethods $AzureMFA |
Disclaimer: All scripts and references on this blog are offered “as is” with no warranty. These scripts are tested in my environment, it is recommended that it is tested in a test environment before using in production.