Credits and sources Microsoft Learn https://learn.microsoft.com/en-us/azure/defender-for-cloud/security-policy-concept https://learn.microsoft.com/en-us/azure/defender-for-cloud/secure-score-security-controls Intro In this part of the blog series, I want to show you how to remediate or dismiss the recommendation that...Read More

Credits and sources Microsoft Learn https://learn.microsoft.com/en-us/azure/defender-for-cloud/defender-for-cloud-introduction TechTarget https://www.techtarget.com/searchsecurity/definition/Cloud-Security-Posture-Management-CSPM Intro In this blog series, I want to focus on how Microsoft Defender for Cloud (MDFC)...Read More

Credits and sources Microsoft Learn https://learn.microsoft.com/en-us/azure/bastion/bastion-overview Intro I want to look closely into the Azure Bastion service in this post. Azure Bastion is a service that provides secure remote access to Azure virtual machines. Bastion supports RDP and SSH for managing the virtual...Read More

Intro In this part of the series, I am creating the AVD session hosts so my users can start using the new Azure environment. A session host is a virtual machine that users can log in to and use their corporate software while having low latency to other resources placed in Azure. The steps I will go through in this post...Read More

Intro In this part of the series, I want to ensure that all permissions are given to the correct groups. I could provide access to individual users, but I try to stick to groups as they are easier to manage across an enterprise. I have identified the following permissions I need to grant to user groups. Azure AD Group...Read More

Intro I have now come to the part where I will start deploying AVD resources in my Azure environment. I am going to split the resources up into three parts. This first part will be the “backend,” meaning AVD workspace, host pool, and application groups. The next part will be on RBAC roles and security...Read More