Source, Ingest, Prepare, Analyze and Consume
If you want to re-register for Azure multi-factor authentication and use Authentication app on a new/existing phone, follow these steps;
Login to Azure Portal -> Active Directory -> Your user account –> Profile
Click on Authentication methods link.
Click on Access Panel Profile link. This will take you to your profile page.
Click on Additional security verification link.
Select this option to view QR coce;
You are ready to restore your credentials.
Resources;
How and where to take backup;
Trying to gather resources that can help to secure Azure environment;
There are three most essential areas in Microsoft Azure, RBAC, Storage and Networking, everything in Azure depends on these three main pillars, and considering these areas, I identified the 3 topmost dangerous cyberattacks, below the TOP Parade:
All these attacks are extremely dangerous and effective. However, the privilege escalation is the most dangerous because it can escalate a top-level, which means no more control in the entire cloud and company.
Another good one from linkedin;
https://www.linkedin.com/pulse/explain-example-vpn-gateway-expressroute-michelle-xie/
I have changed my user’s name in Azure DevOps. When I try to clone to repo, started getting this error;
I have no permission issues then what the heck?
It turns out that the issue is with the URL. Please don’t try to connect to url which is produced by portal, something that look like this;
https://project-account@dev.azure.com/project-name/apps/_git/chart
instead try to connect thru your GIT username and then use password;
https://username@dev.azure.com/project-name/apps/_git/chart
If you username has special characters, Git cmd/bash will trhough errors, so replace those with valid characters;
@ can be replaced with %40
+ can be replaced with %2b
Something like;
https://username%40xyz.com@dev.azure.com/project-name/apps/_git/chart
what a waste of time…
One of my developer started getting Git Credential Manager for windows popup and received Authentication failure message. The work around was;
Check the Git for Windows in the Tools – Get Tools and Features…), go to “Individual Item” tab, check “Git for Windows”, and click “Modify”. Then it will ask you to update vs2017 to latest version, for example 15.9.36.
Voila, it started working.
Resource
https://stackoverflow.com/questions/34837173/authentication-failed-for-azure-git
If your organization was created with a Microsoft account, connect your organization to your Azure Azure AD. Sign in to Azure DevOps Services with the same username and password that you use with your Microsoft services. Enforce policies for accessing your team’s critical resources and key assets.
There’s no downtime during this change, but users are affected. Let them know before you begin.
Sign in to your organization https://dev.azure.com/{yourorganization}
Select Organization settings -> Users.
Compare Azure DevOPS email list with your Azure AD email list. Create an Azure AD email address entry for every user who’s in the Azure DevOPS organization and not in the Azure AD.
Connect organization to Azure AD by selecting Azure Active Directory.
Click on Connect directory;
2 out of 6 members(s) are the members that doesn’t exist in Azure AD. They are guest developers using their hotmai/gmail account. If we want to allow them to use Azure DevOPS, we need to create their accounts as Guest in Azure AD.
Sign out of Azure DevOPS.
Sign in with your Azure AD account. If you click on Organization Settings -> Azure Active Directory, you will see this page;
Clicking on Download will download your organization info, Azure DevOPS info and Owner of Azure DevOPS environment and any errors in the connect. This ensures that Azure DevOPS is connected with Azure.
Make adam@{yourorganization}.onmicrosoft.com as “Project Collection Administrators”. This role perform all kind a operations.
Test your access on Azure DevOps and Visual Studio. You will be asked to enter your credentials and approval from Microsoft Authenticator.
Resource;