Tip: Maintaining Azure AD On-premises Components

Does your IT processes include methods to review and update the on-premises components for Azure-connected tools? It should. The components are regularly updated for performance improvements and feature additions, but more importantly, they are sometimes updated to for better security. The following Azure AD components should be upgraded as new versions are released: Azure AD Connect Azure AD Application Proxy Connectors Azure AD Pass-through authentication agents Azure AD Connect Health Agents Most components have an auto-update setting which will automate the upgrade process, but some don’t. Be aware of those that need manual intervention, but also make sure that the auto-update component is working. Resources: Azure AD Connect Health: Version Release History Required Updates for A...

New Book: The Ultimate Guide to Microsoft Certification

The founder of has written a book covering Microsoft’s cloud certification path. The book is intended to answer the following questions: Which Microsoft certification is right for me? What are the Microsoft role-based certifications? What’s the structure of Microsoft exams? Do Microsoft certifications expire? What happens if I fail the exam? Can I retake it? Where do I get started on my personal Microsoft certification journey? If you’re a Kindle Unlimited customer, you can read the book for free, otherwise, it the price for the book is $9.99.

Windows Virtual Desktop Headed to General Availability

Scott Manchester (@RDS4U) Group Manager, WVD and RDS at Microsoft made the following announcement on Twitter…   We are feature complete with #WVD and will be moving to the final phase for GA. Spin up your VMs and start testing your scenarios. Got issues? Engage our community: #WVD #Azure #Microsoft — Scott Manchester (@RDS4U) August 13, 2019 Windows Virtual Desktop is a comprehensive desktop and app virtualization service running in the cloud. It’s the only virtual desktop infrastructure (VDI) that delivers simplified management, multi-session Windows 10, optimizations for Office 365 ProPlus, and support for Remote Desktop Services (RDS) environments. Deploy and scale your Windows desktops and apps on Azure in minutes, and get built-in security and compli...

Granting Local Admin Rights for Users Using Intune Devices that are Azure AD Joined

If you’d like to assign local administrator rights to specific people in the organization, you do it through the Azure Active Directory blade in the Azure portal. 1. In go to Azure Active Directory. 2. Select Devices 3. Select Device Settings 4. Under Additional local administrators on Azure AD Joined devices, you can add the admins here.

New Tools Released for Azure Cloud Shell

New and updated tools are now available for Azure Cloud Shell. The new tools include: Azure Functions CLI—The Azure Functions CLI gives you the ability to create, test, run, and debug Azure Functions. Create and run your first Azure Function using these steps. Bolt—Puppet Bolt is an open source tool to automate the management of your infrastructure. Use it to automate tasks that are part of your day-to-day workflows, or to automate your as-needed tasks. Packer—HashiCorp Packer is a tool to automate the creation of a machine image, whether it’s a VM, a container, or more from a single configuration source. Updated tools: Java Development Kit: Version Azure PowerShell Azure CLI

Know When Azure Products are in Preview and When They Become Public

During preview, new Azure products can go through a myriad of changes before they are ready to be available publicly. Many Azure customers want to know when new products will be available widely so they can plan deployment for their live environment. Using the Azure Updates page (, you can filter by the products that are already available, those that are in preview, and the ones that are still being developed. Additionally, there’s an RSS feed to use to monitor updates using your favorite news reader. RSS feed for all: RSS feed for in preview: RSS feed for now available:

Azure Quickstart Templates

Those in charge of Azure implementations for their company get nervous a bit about the work behind creating and deploying a tenant full of resources, services, and dependencies. Utilizing the Azure console alone to do the work can be intimidating and time consuming. Consider utilizing JSON templates instead. Microsoft has a wealth of JSON templates available for generating almost everything. If a company needs to create it, there’s almost assuredly a template available already. As of this writing there’s almost 800 templates available. Where to get the templates: More about Azure Quickstart Templates and Azure Resource Manager: Also: Azure Resource Manager overview

PowerShell Script to Create a Virtual Machine Scale Set

Use the following Azure PowerShell script to create a Virtual Machine Scale Set and includes the resource group, virtual network, and load balancer. New-AzVmss ` -ResourceGroupName “myResourceGroupScaleSet” ` -Location “EastUS” ` -VMScaleSetName “myScaleSet” ` -VirtualNetworkName “myVnet” ` -SubnetName “mySubnet” ` -PublicIpAddressName “myPublicIPAddress” ` -LoadBalancerName “myLoadBalancer” ` -UpgradePolicyMode “Automatic”

Azure security expert series: Cloud security with Ann Johnson

Welcome to the Azure Security Expert Series! Watch Ann Johnson, Corporate VP of Cybersecurity at Microsoft, lead a discussion on cloud security best practices and the latest Azure innovations. Then access our on-demand sessions, all led by Microsoft security product experts, to gain practical knowledge from Azure security services including: Azure Sentinel, Azure Security Center, Azure Network Security and Azure IoT security.

Sneak Peek at a new Windows Virtual Desktop Win32 Client

Corey Sanders, Corporate VP of Microsoft Solutions sits down with Scott Manchester, Principal Group PM on the Silicon, Graphics and Media team to talk about what new things are available in the current preview of Windows Virtual Desktop (WVD) being offered in Azure. Scott has brought along a Surface GO to demonstrate the new signed Win32 app which allows you to install and use it – even when the device is in Windows S mode. Scott shows off what kind of performance you can get from an 8 GB of memory Surface Go using an LTE network, connecting to a 16 core NVidia GPU powerhouse VM in Azure. Sign up for the preview today –

On July 1 On-premises MFA Server will No Longer Be Offered for New Deployments

Good to know. Per Microsoft: As of July 1, 2019, Microsoft will no longer offer MFA Server for new deployments. New customers who would like to require multi-factor authentication from their users should use cloud-based Azure Multi-Factor Authentication. Existing customers who have activated MFA Server prior to July 1 will be able to download the latest version, future updates and generate activation credentials as usual. The on-premises version is available for download here:Azure Multi-Factor Authentication Server To setup and use Multi-Factor Authentication in Azure, see:Planning a cloud-based Azure Multi-Factor Authentication deployment

Microsoft and Oracle Announce Partnership to Connect Their Clouds

Microsoft and Oracle today have announced a plan that will allow Azure and Oracle customers to utilize cross-cloud capabilities seamlessly. For example, Azure customers will be able to run Oracle applications on Microsoft’s platform while maintaining the backend database structure on Oracle’s OCI cloud platform. Some benefits of this partnership: Connect Azure and Oracle Cloud seamlessly, allowing customers to extend their on-premises datacenters to both clouds. This direct interconnect is available starting today in Ashburn (North America) and Azure US East, with plans to expand additional regions in the future. Unified identity and access management, via a unified single sign-on experience and automated user provisioning, to manage resources across Azure and Oracle Cloud. Als...