MSSP – To trigger playbooks in the customer tenants sometimes you need to assign the managed identities of those playbooks permissions to execute actions within the customer tenant. This post covers the steps to configure the access required to assign those roles and the steps to assign the roles as well.
Steps to delegate access to users on another tenant for a Sentinel POC using Azure Lighthouse.
Testing the new MDC governance rules to automatically assign and track owners for recommendations
Testing the new ingestion time transformation features in Microsoft Sentinel.
Sharing my initial experience with verifiable credentials.
CloudKnox initial setup and the incredible value it brings to organizations and the security professionals working hard to keep them secure.
You can have cross-tenant workload identities authenticating using the secret or certificate from their home tenant.
A story of how I left an RDP port wide open (oops!) and MDC and Sentinel came to my rescue when my resource was attacked.
Just a few tips and tricks for configuring the Azure Activity Connector in Microsoft Sentinel.
An overview of RiskIQ Illuminate solution available through Microsoft Sentinel Content hub.