Azure AD – APP registration concepts

App registration concepts: The application registration in your tenant enables you and others to authenticate against your Azure Active Directory. Another option is to authentication through an application secret. A default application registration on its own cannot do much more than validating that the user has valid login credentials. Video: https://www.linkedin.com/learning/microsoft-graph-for-developers/registering-your-application-in-azure-ad Example: Create Client IdContinue reading “Azure AD – APP registration concepts”

Windows DNS – how to block queries or domains

I got request form IT Security team to block DNS query malware in DNS Service. They guide me with follow this link. https://docs.microsoft.com/en-us/windows-server/networking/dns/deploy/apply-filters-on-dns-queries  ex: Add-DnsServerQueryResolutionPolicy -Name “BlockListPolicy” -Action IGNORE -FQDN “EQ,*.onion” -PassThru Unfortunately, this PowerShell command works only Windows server 2016 or greater. For previous versions read those articles: https://superuser.com/questions/458590/how-to-setup-a-dns-blacklist-whitelist-on-windows-server-2008-r2 https://serverfault.com/questions/513777/prevent-dns-responses-for-specific-domain-completely third-party DNS firewall: https://softati.com/download/dns-firewall/Continue reading “Windows DNS – how to block queries or domains”

Microsoft Graph / Graph API

Introduction: The Microsoft Graph APIs exposes RESTful services. This makes it very flexible because REST is compatible with almost any modern platform programming languages. The exchange format is essentially in JSON and it can be encapsulated into the HTTPS transport security. The central point of Microsoft Graph is the concept of User, the authentication andContinue reading “Microsoft Graph / Graph API”

Azure – How to know who have created specific resource?

Reference: https://docs.microsoft.com/en-us/azure/azure-monitor/platform/activity-logs-overview   By default the log events are stored for 90 days. You have to archive the logs to storage account if you want to keep more than 90 days.     By default log is stored in 90 days you have to archive the logs to storage account if you want to keepContinue reading “Azure – How to know who have created specific resource?”

Azure Automation

Introduction: https://docs.microsoft.com/en-us/azure/automation/automation-intro How to: Getting Around the Basics of Azure Automation for Office 365 https://docs.microsoft.com/en-us/azure/automation/automation-quickstart-create-account https://docs.microsoft.com/en-us/azure/automation/manage-runas-account https://docs.microsoft.com/en-us/azure/automation/automation-windows-hrw-install#automated-deployment https://docs.microsoft.com/en-us/azure/automation/troubleshoot/runbooks Automation runbook gallery: https://docs.microsoft.com/en-us/azure/automation/automation-runbook-gallery Redirect Azure automation output to a file ( or blob container in Azure terminology) ? https://docs.microsoft.com/en-us/azure/automation/automation-runbook-output-and-messages https://social.msdn.microsoft.com/Forums/en-US/8ac6068f-5bb6-49e2-b63c-8852ef6b6bb1/azure-runbook-output-to-blob-container Process automation for Intune and AzureAD: Process automation for Intune and Azure AD with Azure Automation

Understanding Splunk

Understanding SPL syntax: https://docs.splunk.com/Documentation/Splunk/8.0.2/SearchTutorial/Startsearching https://docs.splunk.com/Documentation/Splunk/7.2.1/SearchReference/UnderstandingSPLsyntax https://docs.splunk.com/Documentation/Splunk/6.2.1/Search/Whatsinthismanual https://www.tutorialspoint.com/splunk/splunk_search_language.htm Comment fonctionne Splunk: Comment fonctionne Splunk ? Le glossaire du SPL Chart : pour obtenir un graphe Timechart : pour obtenir un graphe en fonction du temps Top : pour obtenir les premiers résultats Count : pour désigner le nombre d’événements, de la même façon que le faitContinue reading “Understanding Splunk”