IT Infrastructure Blog
While i was working with a customer and this was one of their needs, i decided to blog on how i deployed.
At first, what’s legacy authentication and why i need to block these protocols?
Legacy authentication is a term that refers to an authentication request made by:
Older Office clients that do not use modern authentication (for example, Office 2010 client)
Any client that uses legacy mail protocols such as IMAP/SMTP/POP3.
Azure Firewall is a managed, cloud-based network security service that protects your Azure Virtual Network resources. It’s a fully stateful firewall as a service with built-in high availability and unrestricted cloud scalability. Azure firewall allows you to centrally create, enforce and monitor network security policies across Azure subscriptions and virtual networks.
Let’s create a demo on setting up Azure Firewall to see how it works! To do that, before you start, make sure you have meet some prerequisites.
Continue reading “Deploy and configure Azure Firewall”Azure Just-in-Time VM Access is a great option to control when engineers need to work in their VM’s with RDP in to the system. Let’s assume they work 1 hour per day on servers. so, keeping port open for 24 hours is a risk.
Using Just-in-Time VM Access we can limit the time it keeps RDP ports open.
When Just-in-Time VM Access enabled, we can define what VM and what ports will be controlled. In most scenarios you do not need to control access to ports used by your applications or services. It will be more in to ports related to management tasks. This all done by using azure network security group rules.
Continue reading “Just-in-Time VM Access in Azure”What is Application Proxy?
Azure AD Application Proxy is a great tool for publishing internal applications without exposing your servers to the Internet. If your applications require authentication for users to access them, you can get Azure AD to handle all this for you.
Application Proxy includes both the Application Proxy service that runs in the cloud, and the Application Proxy connector that runs on an on-premises server. Azure AD, the Application Proxy service, and the Application Proxy connector work together to securely pass the user sign-in token from Azure AD to the web application. The proxy does not require you to open any inbound ports through your firewall, the proxy connector simply connects outbound to Azure and all traffic is routed through that connection.
Continue reading “Integrate on-premises apps with Azure Active Directory Application proxy”