Skip to main content

Just-In-Time VM Access in Azure

In Azure using IaaS workloads, the new  Just-In-Time VM Access helps to mitigate a brute force attack by limiting the time that a port is kept open. Very easy to set up and can control SSH or RDP ports as applicable. This feature in preview now and should be GA soon. Enabling the option will help to harden the security. This would also help to meet the security score by meeting Azure CIS Foundation requirement - "JIT Network Access is 'On'".
https://azure.microsoft.com/en-us/blog/reduce-your-exposure-to-brute-force-attacks-from-the-virtual-machine-blade/


Comments

Post a Comment

Popular posts from this blog

AADConnect: Attribute-based Filtering

As a hands-on practice area lead, I get to deliver projects both directly as an architect, and indirectly as an Engagement Manger. In one recent project, one of my Higher Ed clients wanted to setup attribute-based filtering. The matter got escalated to me and I helped the client in setting this up. I documented the process to my client and thought there may be others who may find this helpful as well. In this article I will not be going into what  AADConnect  is and how to deploy the same. I will assume that you already know about  AADConnect  and possibly have deployed the same as well. One of the features of  AADConnect  is the ability to filter objects that are synched to Azure AD. The default and the recommended configuration are to sync all objects in all domains in the configured forest. There are cases, however, that requires us to filter the objects to be synched.  AADConnect  provides the following filtering options: Group-base...
Post a Comment
Read more

Promoted Links - Wrap and size tiles with Client Side Rendering

SharePoint 2013 introduces Promoted Links list and the web part is unbelievable hit with my client users. Anyone who has seen it wants it in their team/portal sites. With increase in usage comes new requirements. And so the requirement did come, for reducing the size of promoted link tiles just so it fits into a web part zone of a custom page layout that was being used. User was adding 3 tiles and the third tile was displayed only partially and a header with scroll buttons was displayed for navigation. Users would prefer to see full 3 tiles in the row. If there are more than 3 items in the list, then they would prefer that the tiles be wrapped to the next row.    Picture below shows out of the box Promoted Links output. There are 6 items in the list. Notice that the Green tile is truncated: To display the 3 full tiles in a row within the web part zone required that the tile size be reduced. Promoted links are rendered using Client Side Rendering ...
10 comments
Read more

Highly Discussed Office 365 features in dev/testing

Some Office 365 features that are in dev/testing cycle as of 9/2/2018 that are interesting and quite often discussed with clients: Rich Yammer feeds in SharePoint New web part to add a fully functional native Yammer feed to any modern SharePoint site. Advanced anti-spoofing protection for external domains in Office 365 Extending coverage of Advanced Anti-spoofing protection for external domains in Office 365 and additional checks for stricter DMARC enforcement Microsoft Bookings - mobile app read-only mode Users with an Office 365 license who have been added to a booking calendar but are not the Bookings calendar admin can now use the Bookings mobile app in read-only mode to see their bookings. (For some reason, bookings have not picked up. I thought this would be helpful to every organization. Maybe we are not educating properly?) Microsoft Secure Score support for new controls Secure Score will add new controls to support Microsoft Cloud App Security and Azure...
Post a Comment
Read more