Decommissioning a Device in Microsoft Entra ID
Decommissioning a device in Microsoft Entra ID looks deceptively simple from either end — click Disconnect on the device, or click Delete in the cloud. Either one alone leaves you…
Welcome to the Dojo
Welcome to InfoTech Ninja
IT professional writing about cybersecurity, cloud & DevOps, automation, networking, and systems administration. Real-world guides for real-world problems.
Latest Articles
Hybrid Join Troubleshooting in Microsoft Entra ID
You followed the Hybrid Join guide. Entra Connect is happily syncing. The SCP is in AD. The four URLs are reachable. The device is domain-joined. Yet dsregcmd /status on the…
Microsoft Entra Hybrid Join: Step-by-Step Guide
Microsoft Entra Hybrid Join is the configuration that lets a Windows device live in two directories at once — your on-premises Active Directory (e.g. lab.local) and Microsoft Entra ID (e.g.…
Entra Device Registration for BYOD
Microsoft Entra Registered — usually shortened to ‘device registration’ — is how you let a personal device (someone’s home laptop, phone, tablet, MacBook) talk to your tenant for work apps,…
Just-in-Time Local Administrator Access for Entra Joined Devices
Standing local admin rights are one of the most reliably exploited footholds in real-world incidents. If a device with permanent admin access is compromised — via malware, phished session token,…
Device Local Administrator Role in Microsoft Entra ID
The previous post in this Entra ID Security pathway covered two of the three ways a user can become a local administrator on an Entra-joined device: the Global Admin auto-elevation…
Managing Device Settings in Microsoft Entra ID
Device Settings in the Microsoft Entra Admin Center is the single page where you configure how devices interact with your tenant: who can join them, how many they can have,…
Require MFA to Join or Register Devices in Microsoft Entra ID
By default, when a user joins or registers a device to Microsoft Entra ID, only their username and password are required. If those credentials are stolen (phishing, breach, brute force),…