If you can't use managed identities, credential resources are a way to manage username and password credentials for Azure Automation runbooks. The Secret Management module is an alternative, and it’s a good option to manage credentials that are shared between interactive scripts and automation runbooks. This article describes how to use the Secret Management PowerShell module to fetch credentials stored in Azure Key Vault for use in an automation runbook.| Office 365 for IT Pros
While I was writing part 1, I kept digging into more details on the GPO deployment method and figured that it deserves a post by itself. Here I’ll cover some pitfalls I’ve run into and things to make life easier such as logging the deployments and having a workbook to monitor things. Azure Arc VM […] The post Azure Arc VM Onboarding Pt.2 – GPO Deep-Dive appeared first on Mindcore Techblog.| Mindcore Techblog
This article describes the prerequisites and how to run cmdlets from the Teams PowerShell module in Azure Automation runbooks. We also consider when you’d want to consider using Teams PowerShell cmdlets instead of Graph API requests or cmdlets from the Microsoft Graph PowerShell SDK. The bottom line is that it’s possible, but maybe not a frequently-used option.| Office 365 for IT Pros
A custom runtime environment is a way of defining a specific job execution environment for Azure Automation runbooks, including Microsoft Graph PowerShell SDK runbooks. In this article, we create a new environment for PowerShell V7.4, load in some SDK modules, switch a runbook from a system-generated environment, and run some code.| Office 365 for IT Pros
The Connect-IPPSSession cmdlet is needed to connect to the Security and Compliance endpoint to update a Microsoft 365 retention policy. Unhappily, the Security and Compliance module doesn’t support managed identities, which makes it harder to run Connect-IPPSSession securely in an Azure Automation runbook. In the end, we use a credential stored in the automation account. And then we had to disable WAM. All explained here.| Office 365 for IT Pros
What is Azure Arc Azure Arc is a Microsoft service that extends your Azure management and governance capabilities to your resources outside of Azure, and this can include on-premises servers, virtual machines, and other cloud environments. With Azure Arc, you can centrally manage, secure, and automate workloads across hybrid and multi-cloud environments using familiar Azure […] The post Azure Arc & Hybrid Workers – Simplifying Hybrid Cloud Automation Pr.1 appeared first on Mindcore Techblog.| Mindcore Techblog
Explore how to deploy and test DSCv3 at scale using Azure Run Commands and Bicep templates in this proof-of-concept experiment. Learn how Azure Arc enables DSCv3 execution without extensions, potential security considerations, and what the future holds for native Bicep support in Azure Machine Configuration.| Mindcore Techblog
Recent problems with Microsoft 365 PowerShell modules afflicted the ability of Azure Automation runbooks to execute cmdlets Microsoft Graph PowerShell SDK and Exchange Online Management modules. The root cause is a decision to remove support for .NET6, but the worrying point is the lack of awareness within Microsoft engineering that Azure Automation is where many critical scripts run. Better pre-release testing is definitely needed.| Office 365 for IT Pros
In this post I will share a way to populate a devices entra ID group based on user attributes like department or location property.| www.systanddeploy.com
In this post I will show you an Azure Automation runbook allowing to automatically removing unwanted members of a group every x days or hours.| Syst & Deploy
In this post I will show you a dashboard to monitor easily apps installed on your Intune devices.| Syst & Deploy
In this post I will share an Azure automation script (runbook) allowing you to automatically populate a device group based on a user group.| Syst & Deploy
In this post I will share an Azure Automation runbook allowing you to be notified by mail about Azure applications with secrets or certificates that soon expired.| Syst & Deploy
In this post I will show you a way to automatically add a device to Entra ID group from a remediation script.| Syst & Deploy
In this post we will see how to run KQL queries on a Microsoft Defender for Endpoint through Azure Automation, PowerShell. and Graph API| Syst & Deploy
