Security Archives - Page 2 of 3

22 Mar 2022

FireMon: How to Configure SAML SSO with Azure Active Directory (AzAD, AAD)

By Michael Yuen @yuenx|2022-10-12T12:11:40-07:00Mar 22, 2022 - Tuesday|Microsoft 365, Security, Technology|

Read: 6 mins.This article goes over how to configure FireMon Single Sign-On with Azure Active Directory using the appropriate Group Claim schema.

22 Feb 2022

Azure Active Directory: Role Changes (ie. Global Administrators) (Auditing and Splunk)

By Michael Yuen @yuenx|2025-05-10T16:53:58-07:00Feb 22, 2022 - Tuesday|Microsoft 365, Security, Technology|

Read: 5 mins.This article covers three ways to audit Azure Active Directory Role changes, such as the Global Administrators: Azure Portal, Microsoft 365 Compliance Center, and Splunk (SIEM).

20 Aug 2021

Active Directory: Account Lockouts – Visualize with Splunk Dashboards

By Michael Yuen @yuenx|2025-05-10T17:01:49-07:00Aug 20, 2021 - Friday|Microsoft 365, Security, Technology|

Read: 26 mins.Splunk is a GREAT tool to aggregate and correlate information from a variety of sources, and its SPL queries can help surface what you may need. In this post, we extend our previous Active Directory Account Lockout Troubleshooting article with Splunk Dashboards. SimpleXML source codes are provided to create visual representations of Windows Security event log data to aid with lockout investigations. They can also help identify data or behavior patterns and how many accounts are failing authentication over a specific time period.

20 Jul 2021

Review: MyQ Chamberlain Smart Garage Control (myQ-G0401-ES)

By Michael Yuen @yuenx|2021-07-20T09:40:02-07:00Jul 20, 2021 - Tuesday|Product Reviews, Reviews, Security|

Read: 10 mins.The myQ Chamberlain Smart Garage Control provides a homeowner the option to remotely control the garage door via a smartphone app with real-time notification and other conveniences, including scheduled closes for when you accidentally left it open. I had strong security and hacking concerns. See what they were, what steps I took to address them, and what I thought of the device.

1 Jun 2021

Proofpoint TAP: SAML SSO Configuration with Azure Active Directory

By Michael Yuen @yuenx|2022-03-22T19:53:37-07:00Jun 1, 2021 - Tuesday|Microsoft 365, Security, Technology|

Read: 3 mins.Configuring Single-Sign on (SSO) for Proofpoint Targeted Attack Protection (TAP) with Azure Active Directory (AD) was not a simple task as documentation was lacking. This article will guide you how to configure SAML with Service Provider-initiated login.

19 Aug 2020

Azure AD: Successful Logins From Unknown Users

By Michael Yuen @yuenx|2025-05-10T16:54:22-07:00Aug 19, 2020 - Wednesday|Microsoft 365, Security, Technology|

Read: 3 mins.The Security Operations Center (SOC) noticed logins to Azure Active Directory (AAD) from yahoo.com and gmail.com email addresses and asked the IT Security team to investigate. At the time, we did not allow many B2B Guest credentials for those domains, but alarmingly, the accounts in question successfully authenticated even though they did not exist in our AAD tenant. Who were those people? Did we have a security breach? What did they access?