In my previous posts of this series, I explained the core components and authentication flows of Microsoft Entra Agent ID and steps to create Agent identity blueprints and Agent Identities. If you haven’t read it yet, I recommend doing so before continuing with Part 03.
Part 01 – Step-by-Step guide to Microsoft Entra Agent ID – Part 01 – Authentication Flows…
Azure Bastion is a PaaS service that provides seamless RDP/SSH connectivity to virtual machines via Azure portal. When we use Azure Bastion, virtual machines do not require public IP address to connect even if the VM is in a different VNET (same or different subscription). As long as Bastion subnet can reach the remote network (via VNET peering, VPN), we can use the Azure Bastion service to…
This is the Part 03 of the Microsoft Defender for Identity blog series and so far in this series, we learned about,
Part 01 – Microsoft Defender for Identity Overview
Part 02 – Create Directory Service Account
Similar to Part 02, in this blog post also I am going to talk about another Microsoft Defender for Identity prerequisite. Microsoft Defender for Identity collects information from…
In Part 01 of Microsoft Defender for Identity blog series, I have explained about Microsoft Defender for Identity and it’s benefits. I also talked about the prerequisites. In that list, I mentioned that we required Directory Service Account(DSA) to connect to Active Directory forest.
There are two types of DSAs we can use for this task.
1) Regular Active Directory user account
2) Group Managed…
