Microsoft Global Secure Access – Private Access – Part 6 – Additional Conditional Access Policies

This article is part of a series: Microsoft Global Secure Access – Private Access – Christoffer Klarskov Jakobsen – Microsoft Architect Intro Target applications are subject to the Conditional Access policies that the user attempting to access the application is already subject to. However, there may be situations where you want to add additional protection …
Continue reading Microsoft Global Secure Access – Private Access – Part 6 – Additional Conditional Access Policies

Microsoft Global Secure Access – Private Access – Part 5 – Bypass GSA on local corporate network with direct access to target applications

This article is part of a series: Microsoft Global Secure Access – Private Access – Christoffer Klarskov Jakobsen – Microsoft Architect Intro Global Secure Access protects applications much more effectively and securely than traditional VPN solutions. When using conditional access together with global secure access, zero trust principles are maintained. If you have servers on-premises …
Continue reading Microsoft Global Secure Access – Private Access – Part 5 – Bypass GSA on local corporate network with direct access to target applications

Microsoft Global Secure Access – Private Access – Part 4 – Test configuration and target application

This article is part of a series: Microsoft Global Secure Access – Private Access – Christoffer Klarskov Jakobsen – Microsoft Architect Intro I have created an Entra ID joined VM in Azure running Windows 11 Pro 24H2. The user I test with has been assigned Microsoft 365 E3 + Microsoft Entra Suite licenses (if you …
Continue reading Microsoft Global Secure Access – Private Access – Part 4 – Test configuration and target application

Microsoft Global Secure Access – Private Access – Part 3 – Configure target application

This article is part of a series: Microsoft Global Secure Access – Private Access – Christoffer Klarskov Jakobsen – Microsoft Architect Configure your first application Once the initial configuration is setup and client software deployed to clients, we can go ahead and create our first protected application. Go to Global Secure Access > Applications > …
Continue reading Microsoft Global Secure Access – Private Access – Part 3 – Configure target application

Microsoft Global Secure Access – Private Access – Part 2 – Deploy client software

This article is part of a series: Microsoft Global Secure Access – Private Access – Christoffer Klarskov Jakobsen – Microsoft Architect Intro Below I have highlighed some crusial things to consider and prepare before you start your deployment Prerequisites Deploy using Intune Microsoft Learn has an excellent article about deployment of the Global Secure Access …
Continue reading Microsoft Global Secure Access – Private Access – Part 2 – Deploy client software

Microsoft Global Secure Access – Private Access – Part 1 – Initial configuration

This article is part of a series: Microsoft Global Secure Access – Private Access – Christoffer Klarskov Jakobsen – Microsoft Architect To get started using Private Access within Global Secure Access, go to https://entra.cmd.ms (sign in with global administrator account or account with required permissions: https://learn.microsoft.com/en-us/entra/global-secure-access/reference-role-based-permissions) Intro This article is part of a series. Navigate …
Continue reading Microsoft Global Secure Access – Private Access – Part 1 – Initial configuration

Microsoft Global Secure Access – Private Access

This will be a series of articles about Microsoft Global Secure Access and specifically Private Access (also called Private Access Profile). Licensing overview Prerequisite to use Microsoft Entra Private Access and Microsoft Entra Internet Access is Microsoft Entra ID P1 or Microsoft Entra ID P2.

Identity Governance – Lifecycle Workflows – Hybrid domain

In my previous blog posts, I was looking into the newer Microsoft Entra Cloud Sync and how to configure it. For customers that have removed tier 2 devices that was hybrid joined,switching from the older Microsoft Entra Cloud Connect to the newer Sync edition, could give some added features and support the company workflow for …
Continue reading Identity Governance – Lifecycle Workflows – Hybrid domain

Entra Cloud Sync – Lightweight Agent – Cloud Managed – Part 6 – How to create users in Entra ID and sync to Active Directory

THIS ARTICLE IS PART OF THE SERIES: Entra Cloud Sync – Lightweight Agent – Cloud Managed – Christoffer Klarskov Jakobsen – Microsoft Architect Since you can actually not have users created in Entra ID and then synced to local Active Directory, I will show what would happen if you have an automatic provisioning of users …
Continue reading Entra Cloud Sync – Lightweight Agent – Cloud Managed – Part 6 – How to create users in Entra ID and sync to Active Directory

Entra Cloud Sync – Lightweight Agent – Cloud Managed – Part 5 – How to create groups in Entra ID

THIS ARTICLE IS PART OF THE SERIES: Entra Cloud Sync – Lightweight Agent – Cloud Managed – Christoffer Klarskov Jakobsen – Microsoft Architect You create groups in Entra ID the normal way you are used to. Or if you have a HR system provisioning the groups into Entra ID, this is supported too. You will …
Continue reading Entra Cloud Sync – Lightweight Agent – Cloud Managed – Part 5 – How to create groups in Entra ID