Ukategorisert

I have previously blogged about Entra ID Private Access for use to access various services https://msandbu.org/ztna-for-azure-private-endpoint-using-entra-private-access/ however lately I have configured it for a customer environment to provide remote access for external access for remote users. Therefore I decided to do a write-up on how we solved / designed it. Historically we have been using […]

Many many years ago, I wrote a lot of blog posts around the different remoting protocols (HDX, Blast, PCOIP and RDP) (back in 2016! Remote protocols benchmarking, Citrix, VMware and RDP–Part One PCoIP vs Blast Extreme – msandbu.org) While there was continuous improvements in the Citrix and VMware protocols, there was little improvements in the

Microsoft has earlier stated that they are going to deprecate the authentication protocol NTLM (NT Lan Manager) which also gives an indication of how old this protocol is! (even if Kerberos has been the default authentication protocol since 2000) and of course NTLM has unfortunately been (ab)used numerous times in different cyberattacks with techniques such

This blog post is based upon a presentation that I had for the Microsoft Security User Group in Norway earlier this week (Meetup October 2024: AVNM & Deepfakes how easy can you clone a person.., Tue, Oct 15, 2024, 4:30 PM | Meetup) where I talked about How easy has it come to clone a

The last 6 months I have been involved in numerous discussions related to virtualization and specifically related to “how do I move from A to B? what do I loose of functionality? what do I gain?”. Reason behind these discussions are often related to license cost and that their footprint within their own datacenter is

In a recent talk, I explored how Generative AI can aid us when working with IT security, going into the use-cases, some of the benefits and also something that you need to be cautious about . Here, I’ll summarize the key points and insights from the presentation. Generative AI originates from large pre-trained models designed

A while back I asked how to configure VM insights using Terraform. While DCR rules are well documented in Terraform docs and also how to associate them with virtual machines. However, VMInsights is a different beast. VM Insights provides a couple of things And also a neat set of logs to see Network Connections between

After some issues with a deployment I wanted to describe some tips to troubleshoot this since most docs were useless. Here I am going to cover how to configure Syslog to forward logs to Azure Monitor Agent and ultimately send them to Microsoft Sentinel. Also address common troubleshooting steps, particularly how to manage disk space

With the release of Microsoft Private Access earlier this month, I wanted to test it a bit further to verify what kind of performance/bandwith it can handle. Therefore I decided to set up a test enviroment in Microsoft Azure consists of multiple virtual networks within the same region close to the PoP (Point of Presence)

Even if many of us are in vacation mode, it is not exactly quiet around Generativ AI. Therefore I wanted to write a little update on what is happening on this front. From what is happening from the cloud providers, LLM companies, ecosystem and what the future holds.  Firstly, there is a lot of development