In the last blog post, we enabled FIDO2 security key logins with Windows 10 on our AADJ Windows machines, but users are still able to login with username/password. What if we want to enforce a FIDO2 Security Key or Windows Hello for Business login?
As companies like Yubico announce the next generation of YubiKeys with biometrics, let’s take a look at what is actually possible today with Azure AD Joined Windows 10 devices. Microsoft pushes us closer and closer to passwordless login options, but without a domain and GPOs available, some of our clients are left wanting. In this series of blog posts, I am going to walk through the setup of a FIDO2 device in Azure AD and Windows 10, and later apply Intune policies to alter login options.
For our customers under 300 employees, Azure Active Directory Plan 1 is coming to M365 Business Premium.
Licensing for MFA, Conditional Access, and Risk-Based Conditional Access has been coming up in many of our conversations.
Previously when creating queries for dynamic membership rules in Azure AD, you would have to create the group, then provide the syntax, and then wait anywhere from 5-10 minutes while Azure AD evaluates the group members. When first starting out, this can add up to hours of timing waiting for results.
Microsoft Endpoint Manager has some major updates recently announced! In cliff note form, here are the Top 6 updates my network needs to be aware of.