Author Archives: Sathish Veerapandian

Utilize the Azure WAF to secure your applications from Cyber Attacks

Azure, Cloud Security, Network Security, Security May 30, 2024 Leave a comment

Azure WAF is a critical security service that safeguards web application from common threats and vulnerabilities. Take a look at this video to know more about its features and utilize them in your environment.

Hope you enjoyed this video.

Regards
Sathish Veerapandian

Make use of Azure Firewall to help protect your applications across subscriptions and Vnets

Azure, Cloud Security, Network Security May 20, 2024 Leave a comment

Azure Firewall Sku’s is a stateful firewall service which has built in high availability to help protect your services and applications across subscriptions and VNETs

You can deploy Azure Firewall on any virtual network, but customers typically deploy it on a central virtual network and peer other virtual networks to it in a hub-and-spoke mode.

Take a look at this video to know more about the Azure Firewall.

Regards
Sathish

Use Azure DDOS Protection to protect your resources in subscription

DDOS Protection, Network Security May 14, 2024 Leave a comment

Azure DDOS protection provides several features and capabilities to help protect your Azure resources from DDOS Attack.

Take a look at this video to know more about the same.

Hope you enjoyed this video !

Regards
Sathish Veerapandian

Plan Zero Trust Security Model in your hybrid environment

Network Security, Zero Trust May 3, 2024 Leave a comment

The security concept known as “Zero Trust” is founded on the principle “never trust, always verify” .Watch this video to learn about the essential tenets of Zero Trust and how to implement it in your environment.

Regards
Sathish Veerapandian

Utilize Microsoft Defender for Cloud – To protect your cloud security workloads

Microsoft Defender for Cloud, Monitoring Tools April 5, 2024 Leave a comment

Microsoft Defender for cloud is a comprehensive cloud security solution offer from Microsoft. Cloud security posture management (CSPM) and cloud workload protection platform (CNAPP). It provides security management and threat protection for resources deployed in Microsoft Entra as well as resources in other clouds such as AWS and Google Cloud Platform.

Take a look at this video to explore this feature

Hope you enjoyed this video !

Regards
Sathish

Migrate from Entra Connect to Microsoft Cloud Sync for better resiliency – Part 1

Entra ID, Microsoft Cloud Sync March 15, 2024 Leave a comment

Microsoft Cloud Sync  is a new solution for achieving your hybrid identity synchronizing contacts, groups, and users with Microsoft Entra ID—is Microsoft Entra Cloud Sync.

Rather than using the Microsoft Entra Connect it makes use of the Microsoft Entra cloud provisioning agent. In this article series we will take a look at the steps to migrate from Entra ID connect to Microsoft cloud sync (After detailed analysis)

We will choose only a Pilot OU on this part to see if the synchronization is getting successful for these Pilot OU.

Below are the benefits of migrating to Cloud Sync:

  1. Config is easily managed from Azure AD portal
  2. Cloud Sync does not require SQL server licensing (Azure AD Connect requires a SQL Server database to store identity data)
  3. It’s a light weight agent no heavy dependencies of need to setup a local DB SQL backend
  4. Deployment complexity & maintenance is fair less

Moving on to resiliency:

  1. Multiple agents can be installed for parallel sync.
  2. Whereas Azure AD connect uses Active & Staging mode to achieve some resiliency.

Regarding performance :

  1. Its capable of performing Sequential Sync
  2. Supports Sync to a single tenant from a multi-forest disconnected AD environments

So the question comes here first like ok this seems to be nice but I already have my environment setup and running in Azure AD connect.

What is the steps to migrate to Microsoft Cloud Sync ?

Below are the steps to do that.

First things first (Lets be very honest here )

Not all environments are capable of moving to Cloud Sync .

So we need to first evaluate any environment before choosing this option.

How do I validate ?

You can use the Microsoft setup tool by navigating to the below url

https://setup.cloud.microsoft/entra/add-or-sync-users-to-microsoft-entra-id

Continue reading

Make use of the Azure Recovery Services Vault Backup to restore your Domain Controller

Active Directory, Azure, Backup, Entra ID, Recovery Services Vault February 27, 2024 Leave a comment

It’s been quite a while since I blogged, and since I started doing podcasts, this has been reduced a lot.This time I thought to blog something about the cool stuff in the Entra ID feature I explored in the demo and wanted to share about the same.

Today in this blog, let’s take a look at restoring a domain controller running on the Azure virtual machine from the Recovery Services vault.
Recovery Services Vault is a feature provided by Microsoft Entra that offers centralized management and protection of data, applications, and workloads.
One of the services offered by Recovery Services Vault is it’s backup.

We also talked about the site recovery in the previous video, and if you want to have more information on it, I highly recommend taking a look at it.
In the backup part, it allows us to securely backup and recovery our applications in the event of accidental deletion , data corruption, or site failures.

Continue reading

Microsoft Entra Global Secure Access Preview – Secure Access Service Edge (SASE)

Entra ID, Global Secure Access, Security February 2, 2024 Leave a comment

An identity-aware, cloud-based security infrastructure is becoming increasingly necessary for today’s workforce as more and more data and apps move to the cloud. Security Service Edge (SSE) is a new class of network security solutions that is a stand-alone subset of Secure Access Service Edge (SASE).

SASE architecture’s main goal is to provide a seamless and secure user experience while maintaining optimal connectivity.

Take a look at this video to learn more about it.

I hope you enjoyed this video!

Regards

Sathish Veerapandian

Deploy your Conditional Access Policies via Terraform

Entra ID, Terraform October 12, 2023 Leave a comment

With Terraform, you can define your Conditional Access policies and configurations as code. This means you describe the desired state of your Azure AD Conditional Access environment in Terraform configuration files, making it version-controlled, repeatable, and easily auditable.

Take a look at this video to see more about this information

Hope you enjoyed this video !

Sathish Veerapandian

Make use of Content Hub for enhanced utility in Microsoft Sentinel

Azure Sentinel, SOC September 27, 2023 Leave a comment

The Microsoft Sentinel Content Hub serves as a centralized hub for discovering and managing pre-built, domain-specific content, making it the ideal resource for finding new solutions or exploring data within Sentinel workspaces.

Take a look at this video to get started with Microsoft Sentinel Content Hub

Regards

Sathish