Oscar

My feedback

  1. 1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Additional Services  ·  Flag idea as inappropriate…  ·  Admin →
    Oscar shared this idea  · 
  2. 1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Azure Security Center  ·  Flag idea as inappropriate…  ·  Admin →
    Oscar shared this idea  · 
  3. 8 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Oscar supported this idea  · 
  4. 1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Oscar commented  · 

    Hello,
    Yes, we would like to know both and use both for monitoring purpose:
    1. To know when a role was last assigned to a user for auditing purpose
    2. To know when a role's permission or name was modified

    I guess if any, the 1st or 2nd action made and "date modified" updated for PS: Get-AzureADDirectoryRole, then we can already operate with this,
    We could set a script as example:
    1. We know that role is set and up to date as from 1-Jan-2019
    2. Run script Get-AzureADDirectoryRole | Select ModifyDate
    3. If "ModifyDate" is different than last time role was modified 1-Jan-2019, check and compare members or rest parameters like name or permissions

    Oscar shared this idea  · 
  5. 47 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    6 comments  ·  Azure Active Directory » PowerShell  ·  Flag idea as inappropriate…  ·  Admin →
    Oscar supported this idea  · 
    Oscar commented  · 

    Would be great to have following scenario:

    1. Connect-AzureAD

    2. Run PowerShell to query one or all Azure AD joined devices of the Tenant and then export received data to CSV with information:

    A) User linked to device
    B) Device ID
    C) BitLocker Key and Recovery Key
    D) Device rest details as name etc.

    So we can schedule script to be run on our servers and store information for long term use.

    Oscar shared this idea  · 
  6. 90 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    16 comments  ·  Azure Active Directory » Device Registration  ·  Flag idea as inappropriate…  ·  Admin →
    Oscar supported this idea  · 

Feedback and Knowledge Base