Category: external tenant

  • Who Is Still Using Text Messaging For Multi-Factor Authentication

    Who Is Still Using Text Messaging For Multi-Factor Authentication

    Hopefully not you, but that is not the point of this blog post. The point of this one is to query the sign-in logs in Microsoft Entra ID and report on other users in your tenant, and guest users from outside your tenant, who are still using SMS (text messages). Note that the user might…

  • Removing Cloud Service Providers (CSP) In Entra/M365

    Removing Cloud Service Providers (CSP) In Entra/M365

    The time comes to change or remove a CSP. So you go about your directory removing configuration that allows the CSP to have remote admin access to your tenant. You might do this anyway, even if the CSP is still a current partner, because there is the inherent risk that the CSP is a backdoor…

  • Protecting Actions in Entra ID

    Protecting Actions in Entra ID

    Conditional Access is well known in its ability to control logins, indeed that is exactly what the name says it does – it puts conditions on access, but now it is also possible to put conditions on actions as well – for example when you want to add an extra layer or protection. This is…

  • Testing Entra ID SaaS OIDC Apps With JWT.ms

    Testing Entra ID SaaS OIDC Apps With JWT.ms

    JWT.ms is an app that will show you the contents of any JSON Web Token (JWT) issued by Entra ID that you have access to and can paste into the top field in the browser. But you can also use it to test apps in Entra ID – you can publish a web app that…