Author Archives: Marcel Zehner

About Marcel Zehner

Microsoft Azure MVP

Using TOTP Tokens with Azure AD – Part 2/2: Programmable Tokens

Posted on 04/06/2022 by Marcel Zehner

In the first part of this series I explained and demonstrated the process how non-programmable TOTP tokens can be used as a possible alternative to the Microsoft Authenticator app. In this second post I will cover programmable tokens. Non-programmable tokens … Continue reading →

Posted in Azure, Security | Tagged authentication, azure, azure ad, mfa, microsoft, Security | 1 Comment

Using TOTP Tokens with Azure AD – Part 1/2: Non-programmable Tokens

Posted on 03/06/2022 by Marcel Zehner

If password-based authentication is in place, the additional use of a second factor (or multi-factor (MFA) authentication) is highly recommended to enhance the security of identities and to strengthen the authentication process. The Microsoft Authenticator app running on a smartphone … Continue reading →

Posted in Azure, Security | Tagged 2fa, authentication, azure, azure ad, mfa, microsoft, Security, token | 1 Comment

Microsoft Cloud App Security – Manual Import of custom Log Files (GUI)

Posted on 25/05/2021 by Marcel Zehner

Microsoft Cloud App Security (MCAS) is Microsoft’s CASB (cloud access security broker). It is a service that sits between your cloud app consumers and the cloud apps they are using and acts as a security and compliance enforcement point. Before … Continue reading →

Posted in Security | Tagged apps, casb, cloud, custom logs, log parser, mcas, Security, shadow it | Leave a comment

AWS Single Sign-On with Azure AD – Walk-through Part 1/2

Posted on 02/05/2021 by Marcel Zehner

If you are using Azure AD as your main Identity Provider (IDP), then you know that you can integrate/federate lots of cloud apps with it. This not only gives you better control over cloud app usage, but also allows users … Continue reading →

Posted in Azure | Tagged aad, amazon, aws, azure, azure active directory, azure ad, idp, oauth, provisioning, saml, scim, single sign-on, sso | 2 Comments

Azure Front Door Health Probes

Posted on 27/02/2021 by Marcel Zehner

If you are using Azure Front Door to optimize global access to your apps, you might recognize a lot of health probes in your app logs. This article explains what this means and why these are used.

Posted in Azure | Tagged azure, front door, frontdoor, health, health probes, interval, log analytics, web app | Leave a comment

Disable Azure Storage Account Access Keys (Preview)

Posted on 31/01/2021 by Marcel Zehner

Several months ago I published this article which discusses the problem of Azure services that use a public endpoint together with its available authentication options. If companies do not understand these mechanics, they put their environment at risk. For Azure … Continue reading →

Posted in Azure | Tagged access key, authentication, azure, endpoint, public, Security, storage, storage account | Leave a comment

How to master Azure resources? Watch my new recording!

Posted on 16/11/2020 by Marcel Zehner

How to master resources in Azure? This is a question I receive a lot. We all agree that deploying resources in Azure is a simple process: You just go to the marketplace, fill out some form, hit next, next, finish, … Continue reading →

Posted in Azure, DevOps | Tagged azure, blueprint, code, DevOps, govern, governance, IaC, manage, master, microsoft, operations, policy | Leave a comment

The live stream recording “ARM Templates Deployment Scripts” is now available!

Posted on 20/10/2020 by Marcel Zehner

On October 19, 2020 I did a live stream together with Microsoft Azure MVP Martin Ehrnst to talk about Deployment Scripts in ARM templates. We talked about the need for deployment scripts for the “last mile configuration” and how they … Continue reading →

Posted in Azure, DevOps | Tagged ARM, arm templates, automation, azure, declarative, DevOps, IaC, imperative, infrastructure as code, microsoft | Leave a comment

The live stream recording “Nested & linked ARM templates” is now available!

Posted on 13/10/2020 by Marcel Zehner

On October 12, 2020 I did a live stream together with Microsoft Azure MVP Martin Ehrnst to talk about nested and linked ARM templates. We covered topics such as nesting, expression evaluation handling, multi-scoping and decomposing strategies. And we quickly … Continue reading →

Posted in Azure, DevOps | Tagged ARM, arm templates, automation, azure, DevOps, IaC, infrastructure as code, lifecycle management, linked, linked templates, microsoft, nested, nested templates | Leave a comment

The live stream recording “More complex ARM templates” is now available!

Posted on 08/10/2020 by Marcel Zehner

On October 4, 2020 I did a live stream together with Microsoft Azure MVP Martin Ehrnst to talk about more complex ARM templates. We covered topics such as parameters, variables, dependencies, functions, conditions and copy. And we gave a quick … Continue reading →

Posted in Azure, DevOps | Tagged automation, azure, code, DevOps, IaC, infrastructure as code, lifecycle, microsoft | Leave a comment