Automate Stop and Start of Azure Firewall for Efficiency
Azure Firewall is a managed stateful firewall that works from the Open Systems Interconnection (OSI) Layer 3 to Layer 7 perspective. It is an excellent PaaS service, but it is…
Effective Solution To Monitor Data Connectors in Microsoft Sentinel
Like all SIEM systems, the Microsoft Sentinel SIEM/XDR product relies heavily on the consistent flow of logs and data from relevant security sources. A typical Microsoft Sentinel workspace can include…
Azure Storage Actions Deep Dive
Updated – 07/05/2025 – Microsoft announced the general availability of Azure Storage Actions, a fully managed platform that transforms how organizations automate data management tasks for Azure Blob and Data…
System Center 2025 Features
With the general availability of Windows Server 2025, Microsoft also released System Center 2025, which introduces updates that reflect a shift in IT infrastructure management and security. These changes align with current…
Set Device Extension Attributes in Microsoft Entra ID
Extension attributes in Microsoft Entra ID provide a powerful method to add custom details to objects, including devices, in your tenant. They allow you to store unique data about each…
Effective Approach To Collect Windows Firewall Events to Microsoft Sentinel
The built-in Windows Firewall is a great security feature for the Windows client and server operating systems. While not every organization actively uses Windows Firewall (they may have a third-party…
Update Microsoft Sentinel Workbooks Efficiently at Scale (In Bulk)
Microsoft Sentinel comes with Content Hub, which you can use out-of-the-box to get content value and start on Microsoft Sentinel quickly. Solutions in Microsoft Sentinel Content Hub provide a consolidated…
Integrating Defender EASM with Microsoft Sentinel Guide
Microsoft Defender External Attack Surface Management (EASM) provides organizations with a comprehensive view of their digital attack surfaces. It discovers known and unknown resources, from web pages to IP addresses…
Enable Sentinel UEBA Activity Templates at Scale (In Bulk)
Once you have enabled Microsoft Sentinel UEBA (User and Entity Behavior Analytics) in your environment, you can customize the entity page and change the activities UEBA tracks. In addition to…
MS-102 Exam Study Guide: Microsoft 365 Administrator Expert
Updated — 16/09/2024 — The exam guide below shows the changes to be implemented starting July 15, 2024. It has been updated to reflect the new objectives and exam topic weights that Microsoft Learning…
Deep Dive into Microsoft Sentinel UEBA (User and Entity Behavior Analytics)
Updated — 04/03/2026 — Microsoft has recently announced an exciting expansion of User and Entity Behavior Analytics (UEBA) in Sentinel called the Behaviors Layer. The Behaviors Layer is a new…
Rotate Microsoft Sentinel Repositories Connections Effectively
Updated — 15/01/2025 — Microsoft announced Bicep Support in Microsoft Sentinel Repositories. Bicep support for Microsoft Sentinel offers streamlined configuration management with intuitive syntax, improved collaboration through version control and…