MMS 2023 at MOA

Description:
Policies, initiatives, management groups, control tower, service control policies... AWS / Azure / GCP oh my! A well architected framework for your cloud landing zone doesn't have to be confusing nor drastically different between the cloud service providers. Come on over to see how to structure the top-level portions of your environment to scale logging, identity, security, finance and resource control.

What you will learn:

• It Really Can Be That Easy to Configure at Scale!
• Different Cloud, Different Name, Same Purpose
• How to Work with Your Cloud Team’s Governance

Description:
In this session, You will learn about every possible way to authenticate to Azure resources & Graph via PowerShell, as well as how to use the same concepts to authenticate to your own APIs and applications.
Expect discussions on the right and wrong way to authenticate, roles, scopes and audiences, how to authenticate with passwords, secrets, and certificates, AND how to set up managed identities so you won't need to use a password at all!
What you will learn:

• Gain Knowledge to Authenticate Securely to Azure Services with PowerShell
• Learn How to Leverage Managed Identities to Authenticate to Services from Azure without Storing Credentials Anywhere
• Elevate Your PowerShell Skillset to the Next Level
• Learn to a Painful Degree Exactly How Authentication Works in Azure

Description:
Would it not be cool if your Intune devices could securely connect to Intune, Azure AD or any custom-built API you operate. For instance, what if your device could query information about itself from Graph API or even update some custom attributes in the cloud, all triggered by a script running locally. This is all possible in many ways, but how can we do such things without compromising security or giving away secrets in our code? In this session we dig deep into the concepts of automation for cloud managed devices, how to make sure communication between the device and cloud is secure and is only coming from a trusted device in your organization. We'll share best practices on how to secure your automations in a cloud-first world when retrieving data from Intune or Azure AD in scripts running locally on the device and which Azure services to leverage to accommodate everything. If you manage Windows device with Intune and have ever been in need of retrieving data from Intune or Azure AD, or perhaps want to learn more how you can securely send log data from your devices to Log Analytics, you don't want to miss out on this demo heavy session.

What you will learn:

• Ensure Only Trusted Devices Can Communicate with Your Infrastructure and Cloud
• Learn about Using Azure Functions and Managed Identities for Automation
• Understand How Azure Functions and Conditional Access Improves Security
• See Real Examples on How We Use This in Large Companies Today

Description:
We'll go deep into rolling out Cloud LAPS and Endpoint Privilege Management. We will spend the first few minutes reviewing Cloud LAPS and considerations you need to make when moving from other solutions. Then we'll dive deep into the world of EPM, discussing how to roll it out and trial at your organization, what to look out for, and how to be successful. We will also cover so immediate areas of investment so you can "be in the know" on how this product is going to grow over the next 6 months. You won't want to miss it, because it's generally just going to be awesome.