Identity configuration recommendations for MSSPs.
Author Archives: Angelica Faber
Sentinel Repositories
A quick introduction to Sentinel Repositories.
Safely integrate playbooks with custom APIs when there is no pre-built Logic App connector.
How to create a custom logic app connector, so you can store your API key securely and use it within your playbooks, when there is no pre-built connector.
Review any “Don’t know” reviewees prior to the end of an access review
Steps to create access reviews that meet strict compliance requirements by allowing auditors to review any “Don’t know” reviewees prior to the end of a review.
Defender for IoT: OT sensor POC
Steps to configure a virtual OT sensor to use for a Defender for IoT POC.
Azure Lighthouse and Sentinel: Assigning access to managed identities in the customer tenant
MSSP – To trigger playbooks in the customer tenants sometimes you need to assign the managed identities of those playbooks permissions to execute actions within the customer tenant. This post covers the steps to configure the access required to assign those roles and the steps to assign the roles as well.
Delegate access using Azure Lighthouse for a Sentinel POC
Steps to delegate access to users on another tenant for a Sentinel POC using Azure Lighthouse.
A few of my favorite MDCA features
Just a few of my favorite MDCA features, which you may already be paying for.
With a little help from MDC
Testing the new MDC governance rules to automatically assign and track owners for recommendations
Disguising data
Testing the new ingestion time transformation features in Microsoft Sentinel.
My Faber Security 