iX-Workshop: Identitäten in Entra ID mit Conditional Access Policies schützen
Erfahren Sie, wie Sie die Zero-Trust-Architektur mit Zugriffsrichtlinien in Entra ID umsetzen und so Ihr Unternehmensnetzwerk effektiv schützen.
#EntraID #IT #iXWorkshops #Microsoft #Microsoft #MicrosoftAzure #Security #news
Microsoft just announced official support to store device bound Passkeys for Entra ID in the Windows Hello container. No app, no external hardware key but built in support. Sadly no attestation while in preview.
RE: https://infosec.exchange/@merill/116188307859736132
Android Authenticator
Root Detection
🚨⚠️🚨⚠️🚨⚠️🚨⚠️
#MicrosoftAuthenticator on #Android
strictly blocks usage on rooted or
jailbroken devices.
Relies on Google
Play Services;
privacy-focused OS
distributions (e.g., #GrapheneOS)
lacking Play Services will be
completely blocked.
THIS WONT MAKE EVERYONE HAPPY
#EntraID für #Linux :tux: : #Himmelblau 3.0 erweitert Enterprise-Funktionen | iX Magazin https://www.heise.de/news/Entra-ID-fuer-Linux-Himmelblau-3-0-erweitert-Enterprise-Funktionen-11199820.html
Microsoft warned about OAuth redirect abuse on March 2, 2026. This isn't credential theft or classic token theft by itself. It weaponizes Entra ID error handling.
An attacker registers an OAuth app with a malicious redirect URI, sends a crafted login.microsoftonline.com link designed to fail, and Entra ID's 302 redirect lands the victim on a phishing page or malware dropper. The sign-in fails and the attacker still wins.
I built a detection and hardening kit you can deploy to an existing Sentinel workspace:
• 4 analytics rules: consent after risky sign-in, suspicious redirect URIs, OAuth error clustering, bulk consent
• 5 hunting queries: permissions baseline, non-corporate IP auth, high-privilege apps, URI inventory, token replay
• 1 workbook: OAuth Security Dashboard
Entra hardening: verified-publisher consent restriction, MFA policy for risky OAuth sign-ins
• OAuth app audit: flags suspicious redirect URIs and overprivileged permissions across app registrations
Blog post: https://nineliveszerotrust.com/blog/oauth-redirect-abuse-sentinel/
Companion lab on GitHub: https://github.com/j-dahl7/oauth-redirect-abuse-sentinel
#MicrosoftSentinel #EntraID #DetectionEngineering #OAuth #IdentitySecurity #BlueTeam
Blog Alert!
This time of getting the Data Api Builder MCP preview to connect to a Fabric Lakehouse SQL Endpoint using Entra ID.
#MCP
#DAB
#MicrosoftFabric
#Lakehouse
#SqlEndpoint
#EntraId
http://sqlreitse.com/2026/03/06/sql-mcp-local-to-fabric-lakehouse/
Microsoft Entra Connect vs Cloud Sync : quel moteur de synchronisation choisir ? https://www.it-connect.fr/microsoft-entra-connect-vs-cloud-sync-quel-moteur-de-synchronisation-choisir/ #ActiveDirectory #Office365 #Microsoft #EntraID
GrapheneOS: Microsoft Authenticator does not support secure Android OS
Microsoft's Authenticator is to delete Entra accesses from rooted and jailbroken devices. GrapheneOS could be affected.
GrapheneOS: Microsoft Authenticator unterstützt sicheres Android-OS nicht
Microsofts Authenticator soll Entra-Zugänge von gerooteten und gejailbreakten Geräten löschen. GrapheneOS könnte betroffen sein.
Entra ID for Linux: Himmelblau 3.0 extends enterprise features
The open-source framework Himmelblau brings extensive new features for the integration of Linux systems with Microsoft Entra ID.
#IdentityManagement #EntraID #Gnome #IT #Linux #Microsoft #news
Entra ID für Linux: Himmelblau 3.0 erweitert Enterprise-Funktionen
Das Open-Source-Framework Himmelblau bringt umfangreiche Neuerungen für die Integration von Linux-Systemen mit Microsoft Entra ID.
#IdentityManagement #EntraID #Gnome #IT #Linux #Microsoft #news
📰 あなたはEntra IDを理解できる (👍 39)
🇬🇧 Beginner-friendly guide to Microsoft Entra ID (formerly Azure AD). Explains cloud identity management abstraction with practical examples.
🇰🇷 Microsoft Entra ID(구 Azure AD) 입문 가이드. 클라우드 ID 관리 추상화를 실용적 예시로 설명.
📰 あなたはEntra IDを理解できる (👍 37)
🇬🇧 Beginner-friendly guide to Microsoft Entra ID, explaining cloud identity management with concrete usage examples for Azure newcomers
🇰🇷 Microsoft Entra ID 초보자 가이드, Azure 입문자를 위한 클라우드 ID 관리를 구체적 예시로 설명
📰 あなたはEntra IDを理解できる (👍 30)
🇬🇧 Understanding Microsoft Entra ID (formerly Azure AD) — a cloud-based identity management service explained for beginners.
🇰🇷 Microsoft Entra ID(구 Azure AD) — 클라우드 기반 ID 관리 서비스를 초보자도 이해할 수 있게 설명합니다.
📰 あなたはEntra IDを理解できる (👍 29)
🇬🇧 Demystifying Microsoft Entra ID (Azure AD) - understand cloud authentication abstraction with practical examples for beginners
🇰🇷 Microsoft Entra ID (Azure AD) 쉽게 이해하기 - 초보자를 위한 실용적 예제로 클라우드 인증 추상화 설명
Something in MS #azure or #entraid is cooked. https://www.office.com is down after it redirects you to the CoPilot stuff.
Blue teamers, if you use Bloodhound to map trust relationships that may also be useful to attackers and would like to extend that to your (possibly otherwise unmanaged) fleet of #linux systems, golinhound (https://github.com/RantaSec/golinhound) by my colleague Lukas Klein may be useful to you.
So far it can be used to produce useful data about #ssh keys, #sudo, #Active_Directory, and #Azure / #EntraID integration.
#itsecurity
📢📧🤖 New research shows how Entra ID OAuth consent can grant apps like ChatGPT access to emails, highlighting hidden security risks tied to permission approvals.
Read more: https://hackread.com/entra-id-oauth-consent-chatgpt-emails-access/
Microsoft Authenticator gets jailbreak and root detection
Microsoft announces that the Authenticator app will detect jailbreaks and root access. Entra access will then be deleted.
