Read my latests posts
-
RDP to Entra ID Joined VM (Workaround then Azure Bastion is not possible to deploy)
Windows server 2025 (and earlier) comes with the feature of being Entra ID joined.In Azure, this is very easy and can be done then deploying, or later by installation the AADLoginForWindows extension. The best way to manage a VM (then you need RDP access), is by using Azure Bastion. However if that is not an…
-
Entra ID – Passwordless Configuration – Basic
Intro This guide is devided into two phases. One phase is about preparing the customer’s Microsoft 365 Entra ID to support passwordless implementation.The other phase is about creating users, adding temporary access pass and self-service password reset options. DISCLAIMER: Some of the pictures is in danish – I wish to come back and edit for…
-
Inbound SMTP DANE with DNSSEC in Exchange Online
Intro This guide expains how to enable Inbound SMTP DANE with DNSSEC in your customers tenant.Domains to be configured for this, will be domains present in your customers tenant. Verify DNSSEC Update existing MX record TTL in DNS management system Enable DNSSEC for domain in Exchange Online Add new MX record to domain Verify new…
-
Azure Virtual Deskop – AppAttach and MSIX AppAttach
Intro Before beginning, it is important to understand when to use the newest offer AppAttach or go with the older MSIX AppAttach.Below is a table comparing the two: In general use AppAttach, as long as you’re running Windows 11 Multi-Session or newer, as it is not available on Windows 10 Multi-Session. Prerequisites Install MSIX Packaging…
-
Windows Hello for Business Cloud Kerberos Trust
Prerequisites and Requirements Link to full Microsoft article: https://learn.microsoft.com/en-us/windows/security/identity-protection/hello-for-business/deploy/#windows-server-requirements AzureAD Kerberos object in Active Directory Link to full Microsoft article: https://learn.microsoft.com/en-us/entra/identity/authentication/howto-authentication-passwordless-security-key-on-premises#install-the-azureadhybridauthenticationmanagement-module Windows Hello for Business Policy enable Link to full Microsoft article: https://learn.microsoft.com/en-us/windows/security/identity-protection/hello-for-business/configure Enable Windows Hello for Business in the tenant-wide policy.OBS: If any hybrid-joined devices are present in tenant, do not use this tenant-wide policy, but use account…
-
Azure Virtual Desktop – Entra ID SSO – Complete Guide
This guide will walk through all the steps required for SSO to work, both within AVD session hosts (auto login to Microsoft applications running within AVD) and from clients to AVD session hosts, then connecting to them.If you only require SSO to work within AVD session hosts, you can skip step 12 (that links to…
See my latests videos on my Youtube channel
Christoffer Klarskov Jakobsen – YouTube
This was such an enjoyable read—it made
the topic easy to understand! The site’s quality and attention to
detail are impressive.
What a fascinating read! I’ll definitely be returning to this site for more content like
this.