AzureDevops

 I wanted to answer what the "Azure Devops" Microsoft suite is as many people may not understand the powerful tool that it is and as a former consultant I see a lot of people have a ton of disparate tools when Microsoft makes it easy.  So - here are 5 reasons to use Azure Devops. 1) Replace JIRA Azure Boards can replace your backlog in JIRA. If you run an agile team, you probably use Jira - however you can easily use Azure Boards and replace your JIRA backlog. The benefits are that you are buying into the Azure DevOps suite and have one tool to manage your code and backlog. JIRA can be expensive, so it makes sense to start a new project with Azure Boards - no need to default to JIRA. 2) Replace Bitbucket, Gitlab, TFS, etc. Azure Repos enables users to write to private cloud hosted repos. This way you can not only take advantage of having a Microsoft hosted and private repo, but you can easily integrate with the other tools in the Azure Devops suite like Test Plans & Pipel

This is a tool for testing "memorable site for testing clients against bad SSL configs" https://badssl.com/

Long have I looked for a secure and easy to setup alternative for a "Jumpbox" or bastion server solution in Azure. Secure access always seems to add a lot of management overhead and cost to a project. Either you have to create a separate RDS server and pay for the licenses or you have to use the Client VPN solution in Azure that is limited. Luckily, Pritunl has a great opensource VPN product which you can use to limit your exposure to the outside world. Under the hood Pritunl is built on the OpenVPN protocol which we all know and love, and you can easily enable 2FA with minimal setup. To setup Pritunl, simply create a new Ubuntu VM image from the Azure marketplace. I used the latest 18.04-LTS image, but all other flavors of Linux will work as shown in the  Installation documentation. There really isn't much to the setup, I simply ran the "Ubuntu Bionic" commands listed on their documentation: sudo tee /etc/apt/sources.list.d/mongodb-org-4.0

A living list of helpful resources and links to Azure tools. Azure Resource Explorer  - A tool to view and edit the direct ARM JSON. Azure Speed test tool  - Runs speed tests and determine latency between regions. Azure Advisors Yammer  - Useful for questions - monitored directly from the product team often times. Learning Build Azure  - A great community centered around certification and learning. Whitepapers Whitepapers  - Customer engagement materials.

Often times you will need to invite a 3rd party to your Azure AD tenant to support your environment. When you add them to a resource, they will automatically be invited as a guest user in your Azure AD tenant, however they won't be able to access this until they accept the invitation email. If you send an invite to a guest user you can see if they have accepted the invitation or not. You also have the option to resend the invitation. From Azure AD you can search for guest users and drill down into an individual one. Here is what the email looks like - the key here is the email comes from " [email protected] " because it can be sent on behalf of this may end up in the junk or spam email folder, so be sure to have them check there.

Manage identities (15-20%) Manage Azure Active Directory (AD) Add custom domains  Add a purchased domain and add the MX or Text records. (ms=msXXXXXX) The person who creates the tenant is automatically the global administrator. TTL must be 60 minutes. Make suire you don't have any unmanaged PowerBI tenants. Configure Azure AD Identity Protection Azure AD identity protection is P2 level and above. You can force people to register for MFA - once everyone is register you can add everyone. User / sign on risk prevents or forces MFA sign in from compromised users. Azure AD Join, and Enterprise State Roaming With Azure AD settings you can enable local admin rights for Azure AD members. The local admins are set as device admins. ESR allows Windows 10 user data to be synced between devices. Data is encrypted. Requires "EMS". Configure self-service password reset Password reset - selected groups or all. One or two methods. Email / Office Phone