Fabian Bader
Fabian Bader
Basically we should implement a 1:1 version of the ARM template converted to YAML with the following changes: * Reorder the YAML for better readability * Rename the following parameters...
@Cloud-Architekt and @merill following your discussion on Twitter (now also knows as X) should we create a separate check in maester or make EIDSCA.AS01 work with maester. Currently the discovery...
@merill do we want to rely on `Get-MgUserAuthenticationMethod` or should we always use `Invoke-MtGraphResults` This adds overhead but we don't have to rely on the current Graph modules too much?...
@merill Yes, this is a duplicate use case but I would still keep it as MT.1010 does not check who is excluded from the conditional access policy. This way you...
Hi @dszp thank you for taking the time and providing all the details. For the results of `MT.1024: Entra Recommendation` I'm sorry to inform you that we can't do much...
> MT.1033: User should be blocked from using legacy authentication ([[email protected]](mailto:[email protected])) @Cloud-Architekt I checked with @dszp and in this env the `onPremisesImmutableId` was set but the `onPremisesSyncEnabled` was empty. Should...
@Cloud-Architekt Ping on this issue, should we switch?
Option 2 is in my opinion the better way to go. But then we would have to deal with same names and how to choose the correct one. Having multiple...
MT.1008 checks both Authentication Strength as well as the "legacy setting" for MFA. So it should only fail if both are missing
I will repo this and let you know.