Azure Infra – a technical blog.
-
Azure AD – External Identities (I)
Let’s say you have an application that you want your vendors to access. If this application is Azure AD joined you could create a separate account, you could invite…
-
F5 – AZURE AD – V16 INTEGRATION
With the release of v16 of the Big-IP software, F5 has created a fully guided integration with Azure AD. This allows F5 administrators to publish their published services directly…
-
F5 – AZURE AD – ROLE assignments to Header based apps
In a previous post I talked about using F5 in front of an Header based application using AAD as the identity provider. While we managed to convert claims into…
-
Active Directory is dead, long live Azure Active Directory
[this post is my personal view on Azure AD and AD – and does not contain technical instructions – happy to go into discussion on this topic – you…
-
F5 – AZURE AD – RADIUS MFA AGENT – PART 2
This post is the second in a short series that uses another Azure AD feature, the NPS agent that allows the Network Policy Server (Radius) in Windows Server to…
-
F5 – Azure AD – Radius MFA agent – part 1
I’ve posted a lot already on the integration between F5 APM and Azure AD to achieve SSO, improve the user experience and even link VPN’s to Azure AD. This…
-
B2B USERS & INTERNAL APPS – MIM deployment
In many of my previous posts I talked about B2B users being replicated to your own AD for guest users to be able to login to your backend (Kerberos)…
-
F5 – AAD – HEADER BASED – EXTERNAL ATTRIBUTES
In earlier posts I talked about my favorite authentication protocol ‘Kerberos’, but obviously there are many more authentication protocols such as HEADER based authentication. While we won’t be sending…
-
F5 – AAD – VPN with MFA
In earlier posts I talked about using F5 as a reverse proxy to Kerberos based resources using Azure AD authentication. This post takes it a step further. Creating an…
-
Windows Virtual Desktop – Tips and Tricks – Publishing RDP
When you have your pool up and running, you might want to do some special stuff. For example, you might want to enable Mic + WebCam redirection: Set-RdsHostPool -TenantName…
-
Windows Virtual Desktop – Firewalls
When you deploy a new Pool, the VM’s in that pool will need access to some URLs and internal IP’s for the deployment to complete. First, the VM’s will…
-
Windows Virtual Desktop – SSO
One the of most annoying things is passwords. And as you might know, Microsoft is on a quest to remove them: which includes you users access to WVD. But…