Home
SCOMnewbie learnings
Cancel

Entra Admin consent bypass

Introduction I’ve discovered today that admin consent is not necessary mandatory for your custom APIs. I don’t know if it’s something that most people know but at least to me this is new, here the...

How to protect a Pode web api with Azure AD

Introduction I’ve recently done a knowledge sharing session about how to protect web API with Azure AD. Long story short, I’ve decided to use the Pode module in addition to MSAL.PS and ValidateAAD...

Azure ARC with GCP workflows and Powershell

Introduction In GCP, people use a service account associated with private keys to run their workflows. The problem is that you have to commit the associated private key somewhere. This is where wo...

Simplest way to generate tokens with Azure AD (not best practices)

Introduction I’ve received recently a question which was “what would you do if you had to generate tokens (access and/or id) for non-coders?” In this case, the end user won’t be able to use MSAL o...

Let’s play with ARC for servers and Powershell (Key vault part)

Introduction In the previous article, we’ve played with the storage api and exposed few limitations, this time we will play with Key vault. In this article, we will see how we can interact with a ...

Let’s play with ARC for servers and Powershell (Storage part)

Introduction The agent-based solution called Azure ARC for servers allows you to govern all your servers (Linux/Windows) which resided outside of Azure (located on-premises or in other public clou...

Kubernetes is not the only way...

Introduction Before people start to bash me, I just want to clarify few things. I’m not pros or cons Kubernetes (K8s), I’m actually a K8s n00b and learn it is in my to-do list. But I understand ho...

Use Graph API batching to speed things up?

Introduction Lately I had to find a way to populate few office365 groups dynamically based on an enterprise application users & groups assignment to generate dynamic email lists. Long story sh...

Execute AD queries protected by modern authentication from Azure without VPN

Introduction I have this question in mind since several months… What would I do if I wanted to run Active Directory (AD) queries from Azure without a VPN gateway? Basically, I wanted to do a quick...

Build a Powershell API with Pode

Introduction I’ve tried to explain previously how to secure a backend api where I’ve used Azure functions to demonstrate how to protect it, but what if we’re not on Azure? I know you can run the A...