Tag: Principle of least privilege

  • May I have your password?

    What’s a temporary access pass in the Microsoft world? The temporary access pass is built to allow for easier onboarding and recovery. Onboarding often required from IT professionals to set up end user devices and IT equipment. This often includes having to ask the end user for their passwords, and having them sent over non-encrypted…

  • Straight PIMping

    One of the greatest risks in modern identity governance structures are stale administrator assignments. Microsoft has provided a system called Privileged Identity Management to combat it in the cloud enterprise. But how to configure it, and what does it mean for your internal IT teams using it? The most commonly provided administrative role in the…

  • The ADvice nobody takes

    Configuring AD is a momentous task in security. Identity is the most central function of modern networks and one of the most important parts of securing an enterprise. In this post I’ll talk about some of the biggest problems I’ve seen in AD configurations and what best practices and some experience say we should do…