Microsoft Sentinel for Microsoft 365 – a must have!

Microsoft Sentinel is a cloud-native SIEM and SOAR solution. Microsoft 365 offers integrated security functions for Azure Active Directory (Entra), Microsoft Defender for Office 365, Microsoft Defender for Endpoint and Microsoft Cloud App Security. However, these features do not cover all possible attack vectors and vulnerabilities that hackers could exploit. In this blog post, I explore how Microsoft Sentinel extends the capabilities of Microsoft Defender XDR (and other Defender products).

Defender for Servers without Azure Arc

Header for Blogpost "Defender for Cloud without Azure Arc

If you want to protect your servers from cyber threats, you may be relying on Defender for Servers from Microsoft, a leader in the Gartner Magic Quadrant. Microsoft has now announced the direct onboarding of Defender for Servers without Azure Arc and is now officially available. Direct onboarding is a new feature that allows you to add the servers you want to protect to Defender for Servers without needing Azure Arc for Servers. In this blog post, I'll explain what this means, the benefits of this option, and who can benefit from it. I will also compare the new option with Azure Arc for Servers.

Azure AD Connect Cloud Sync Announcement

AADC Cloud Sync Announcement Banner

Azure AD Connect (AADC) is an identity synchronization tool from Microsoft, responsible for synchronizing identity data from the local directory service to Azure Active Directory (AAD). Microsoft is announcing that the Azure AD Connect identity synchronization tool is giving way to a successor and will likely be retired in the future. Microsoft's announcement states that the successor, Azure AD Connect Cloud Sync, will take over completely.

Application Gateway WAF v2 Custom Rules

Header - AppGW WAF v2 Custom Rules

The Application Gateway WAF v2 has brought some new features compared to v1, including the ability to create "WAF Custom Rules". In this short article I would like to discuss these "Custom Rules" and show how you can successfully create them. I have added some hints to the article that are difficult or impossible to find in the Microsoft documentation.

One year as a digital nomad

Ein Jahr als digitaler Nomade

Time for a post of a slightly different kind. Travel, adventure, uncertainty and part-time work... This was my life when I decided to try my luck as a digital nomad and leave my home country Switzerland for a year. In this short article, you'll learn what I consider to be the ten most important points to keep in mind as a digital nomad.

Certificate-based Point to Site Azure VPN through Intune

P2S VPN through Intune header

As the business world becomes increasingly mobile, cloud services are becoming even more attractive. But what if, as is often the case, there are still dependencies on an enterprise network - on Azure, for example? The solution is obvious: a point-to-site VPN ensures communication for mobile workers. In this how-to post, I discuss how a certificate-based point-to-site VPN to an Azure VPN gateway can be automatically rolled out to mobile clients through Intune. I also discuss how certificates can be automatically issued and renewed by a Certificate Authority in combination with Intune.

Azure Reserved Instance size flexibility

With cloud services now widely available on the market, flexibility for customers has multiplied. Quickly start a virtual test environment on Azure at the push of a button and then clean it up again. However, if you want to run several virtual machines on Azure continuously, it is worth planning and save costs by means of a reservation. In order not to have to sacrifice flexibility completely, there is the "Azure Reserved Instance size flexiblity" offer, which is used for VMs and scale sets. In this article, I will go into more detail about how Azure Reserved Instance size flexibility works and how you can use it to your advantage and save money.

en_GBEnglish