This article is part of a series: Microsoft Global Secure Access – Private Access – Christoffer Klarskov Jakobsen – Microsoft Architect Intro Target applications are subject to the Conditional Access policies that the user attempting to access the application is already subject to. However, there may be situations where you want to add additional protection …
Continue reading Microsoft Global Secure Access – Private Access – Part 6 – Additional Conditional Access Policies
Author:Christoffer Klarskov Jakobsen
Microsoft Global Secure Access – Private Access – Part 5 – Bypass GSA on local corporate network with direct access to target applications
This article is part of a series: Microsoft Global Secure Access – Private Access – Christoffer Klarskov Jakobsen – Microsoft Architect Intro Global Secure Access protects applications much more effectively and securely than traditional VPN solutions. When using conditional access together with global secure access, zero trust principles are maintained. If you have servers on-premises …
Continue reading Microsoft Global Secure Access – Private Access – Part 5 – Bypass GSA on local corporate network with direct access to target applications
Microsoft Global Secure Access – Private Access – Part 4 – Test configuration and target application
This article is part of a series: Microsoft Global Secure Access – Private Access – Christoffer Klarskov Jakobsen – Microsoft Architect Intro I have created an Entra ID joined VM in Azure running Windows 11 Pro 24H2. The user I test with has been assigned Microsoft 365 E3 + Microsoft Entra Suite licenses (if you …
Continue reading Microsoft Global Secure Access – Private Access – Part 4 – Test configuration and target application
Microsoft Global Secure Access – Private Access – Part 3 – Configure target application
This article is part of a series: Microsoft Global Secure Access – Private Access – Christoffer Klarskov Jakobsen – Microsoft Architect Configure your first application Once the initial configuration is setup and client software deployed to clients, we can go ahead and create our first protected application. Go to Global Secure Access > Applications > …
Continue reading Microsoft Global Secure Access – Private Access – Part 3 – Configure target application
Microsoft Global Secure Access – Private Access – Part 2 – Deploy client software
This article is part of a series: Microsoft Global Secure Access – Private Access – Christoffer Klarskov Jakobsen – Microsoft Architect Intro Below I have highlighed some crusial things to consider and prepare before you start your deployment Prerequisites Deploy using Intune Microsoft Learn has an excellent article about deployment of the Global Secure Access …
Continue reading Microsoft Global Secure Access – Private Access – Part 2 – Deploy client software
Microsoft Global Secure Access – Private Access – Part 1 – Initial configuration
This article is part of a series: Microsoft Global Secure Access – Private Access – Christoffer Klarskov Jakobsen – Microsoft Architect To get started using Private Access within Global Secure Access, go to https://entra.cmd.ms (sign in with global administrator account or account with required permissions: https://learn.microsoft.com/en-us/entra/global-secure-access/reference-role-based-permissions) Intro This article is part of a series. Navigate …
Continue reading Microsoft Global Secure Access – Private Access – Part 1 – Initial configuration
Microsoft Global Secure Access – Private Access
This will be a series of articles about Microsoft Global Secure Access and specifically Private Access (also called Private Access Profile). Licensing overview Prerequisite to use Microsoft Entra Private Access and Microsoft Entra Internet Access is Microsoft Entra ID P1 or Microsoft Entra ID P2.
Azure subscriptions – limit and monitor Pay-as-you-go subscription
Intro There is not direct way to deny administrators the ability to create free trial, Pay-as-you-go and Azure for Students subscriptions in Azure. However their are a few ways to limit and monitor creations. These settings should every organization enable to limit the possibility for users to create subscriptions and resources that is not govern …
Continue reading Azure subscriptions – limit and monitor Pay-as-you-go subscription
SharePoint Online – Get Site URL even if Get-MgReportSharePointSiteUsageDetail is not working
Microsoft have had an issue for over 1,5 years now, then admins wants to use the Get-MgReportSharePointSiteUsageDetail from Graph API to get info about all SharePoint sites within the tenant. The issue is that the Site URL field is not containing any data. In Fellowmind where I work, I have built a tool we use …
Continue reading SharePoint Online – Get Site URL even if Get-MgReportSharePointSiteUsageDetail is not working
Create PIM group for Entra Roles – Visible Assignments
Description This guide will walk through the proces of creating a security Group combined with a PIM enabled group that will give members eligility to elevate and become User Administrator (any other role could apply, I just this admin role for this demo). The issue If we were to grant users direct eligible assignment to …
Continue reading Create PIM group for Entra Roles – Visible Assignments