Oscar

My feedback

  1. 1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Additional Services  ·  Flag idea as inappropriate…  ·  Admin →
    Oscar shared this idea  · 
  2. 1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Azure Security Center  ·  Flag idea as inappropriate…  ·  Admin →
    Oscar shared this idea  · 
  3. 127 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Oscar supported this idea  · 
  4. 1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    An error occurred while saving the comment
    Oscar commented  · 

    Hello,
    Yes, we would like to know both and use both for monitoring purpose:
    1. To know when a role was last assigned to a user for auditing purpose
    2. To know when a role's permission or name was modified

    I guess if any, the 1st or 2nd action made and "date modified" updated for PS: Get-AzureADDirectoryRole, then we can already operate with this,
    We could set a script as example:
    1. We know that role is set and up to date as from 1-Jan-2019
    2. Run script Get-AzureADDirectoryRole | Select ModifyDate
    3. If "ModifyDate" is different than last time role was modified 1-Jan-2019, check and compare members or rest parameters like name or permissions

    Oscar shared this idea  · 
  5. 82 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    10 comments  ·  Azure Active Directory » PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
    Oscar supported this idea  · 
    An error occurred while saving the comment
    Oscar commented  · 

    Would be great to have following scenario:

    1. Connect-AzureAD

    2. Run PowerShell to query one or all Azure AD joined devices of the Tenant and then export received data to CSV with information:

    A) User linked to device
    B) Device ID
    C) BitLocker Key and Recovery Key
    D) Device rest details as name etc.

    So we can schedule script to be run on our servers and store information for long term use.

    Oscar shared this idea  · 
  6. 153 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    23 comments  ·  Azure Active Directory » Devices  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for your feedback. We are looking into it and evaluating different options for solving the use cases mentioned in this thread. We will update this thread once we have more information to share.

    Oscar supported this idea  · 

Feedback and Knowledge Base