https://kb.whizzbang.co/ 2026-05-15T12:54:00+00:00 https://kb.whizzbang.co/ https://kb.whizzbang.co/_media/logo.png text/html 2022-07-13T14:26:31+00:00 Anonymous (anonymous@undisclosed.example.com) https://kb.whizzbang.co/azure:qnd:ad_connect_password_hash_sync?rev=1657722391&do=diff AD Connect Password Hash Sync * <https://github.com/microsoft/idfix> * <https://docs.microsoft.com/en-us/troubleshoot/azure/active-directory/troubleshoot-pwd-sync> * <https://azurecloudai.blog/2020/09/01/field-notes-azure-ad-connect-password-for-single-user-not-synchronizing/> * <https://docs.microsoft.com/en-us/azure/active-directory/hybrid/tshoot-connect-password-hash-synchronization#one-object-is-not-synchronizing-passwords-troubleshoot-by-using-the-troubleshooting-task> * <https:/… text/html 2022-09-07T19:50:47+00:00 Anonymous (anonymous@undisclosed.example.com) https://kb.whizzbang.co/azure:qnd:azure_admin?rev=1662580247&do=diff Azure Admin Monitoring Resources * <https://docs.microsoft.com/en-us/azure/governance/resource-graph/how-to/get-resource-changes>, #powershell #kql text/html 2022-09-22T18:30:46+00:00 Anonymous (anonymous@undisclosed.example.com) https://kb.whizzbang.co/azure:qnd:azure_architecture?rev=1663871446&do=diff Azure Architecture * Cloud Adoption Framework * Microsoft Azure Well-Architected Framework * Hub and Spoke Architecture Landing Zones * <https://docs.microsoft.com/en-us/azure/cloud-adoption-framework/ready/landing-zone/> * <https://docs.microsoft.com/en-us/azure/architecture/framework/security/design-governance-landing-zone> * Landing Zones are pre-configured environments that cover all the core aspects of modern cloud native IT where you can host your workloads. They are a kind … text/html 2022-10-31T18:12:59+00:00 Anonymous (anonymous@undisclosed.example.com) https://kb.whizzbang.co/azure:qnd:azure_cli?rev=1667239979&do=diff Azure CLI Azure CLI and Powershell * <https://learn.microsoft.com/en-us/cli/azure/manage-azure-subscriptions-azure-cli> az login --tenant <tenant id> az account set --subscription <subscription id> Powershell Login Sequence Connect-AzAccount Get-AzSubscriptions Set-AzContext Login (via GUI prompt) $AzCred = Get-Credential -UserName <username> az login -u $AzCred.UserName -p $AzCred.GetNetworkCredential().Password text/html 2022-08-29T22:53:17+00:00 Anonymous (anonymous@undisclosed.example.com) https://kb.whizzbang.co/azure:qnd:azure_core?rev=1661813597&do=diff Azure Core * Azure is composed of a number of different logical elements that have a container-contained relationship. * There is Azure AD, which is the top-level construct known as the tenant. * There are management groups that are contained in the tenant and can contain one or more subscriptions. text/html 2022-05-19T15:06:31+00:00 Anonymous (anonymous@undisclosed.example.com) https://kb.whizzbang.co/azure:qnd:azure_ha?rev=1652972791&do=diff Azure HA * Why WSFC needs load-balancer in Azure text/html 2022-09-03T13:00:16+00:00 Anonymous (anonymous@undisclosed.example.com) https://kb.whizzbang.co/azure:qnd:azure_iam?rev=1662210016&do=diff Azure IAM * <https://docs.microsoft.com/en-us/azure/active-directory/develop/v2-overview> * Azure has two separate/distinct scopes of access control — one for Azure AD and one for Azure resources. * A user with the Global Administrator role in AAD can elevate themselves to have the RBAC User Administrator role at the root ( text/html 2022-08-31T19:53:09+00:00 Anonymous (anonymous@undisclosed.example.com) https://kb.whizzbang.co/azure:qnd:azure_monitoring_and_logging?rev=1661975589&do=diff Azure Monitoring and Logging #logging #auditing Azure Platform Logs includes Resource Logs, Activity Logs, and AAD logs. * Activity Logs are subscription-level control plane logs, for example, creating a key vault resource * Resource Logs (previously known as text/html 2022-08-26T20:43:49+00:00 Anonymous (anonymous@undisclosed.example.com) https://kb.whizzbang.co/azure:qnd:azure_networking?rev=1661546629&do=diff Azure Networking Architecture * <https://blog.ine.com/azure-practical-peer-to-peer-transitive-routing> * <https://www.itinsights.org/Azure-Networking-Hub-Spoke-with-NVA-and-Azure-Firewall/> Routing * By default a virtual network gets a route for 0.0.0.0/0 that goes to the Internet and route for each address range for the VNet that goes to the VNet (to allow inter-subnet routing by default). * If the destination is for a public IP for an Azure service it is routed over the Azure pri… text/html 2022-10-21T21:58:29+00:00 Anonymous (anonymous@undisclosed.example.com) https://kb.whizzbang.co/azure:qnd:azure_powershell?rev=1666389509&do=diff Azure Powershell (QnD) Common Commands Connect and Select Authenticate with Azure, list subscriptions for tenants and select a subscription to work with. Connect-AzAccount -Tenant <tenant id> Get-AzSubscription Select-AzSubscription -SubscriptionId <id> text/html 2022-11-08T14:41:33+00:00 Anonymous (anonymous@undisclosed.example.com) https://kb.whizzbang.co/azure:qnd:azure_security?rev=1667918493&do=diff Azure Security * Cloud Adoption Framework * Microsoft Azure Well-Architected Framework * <https://docs.microsoft.com/en-us/azure/security/> * Azure Security Benchmark * Microsoft Defender for Cloud * Secure Score Assessments * The minimum ARM roles/permissions needed to do an Azure security assessment are Reader and Security Reader. The Global Reader role is needed on Azure AD. In addition, a custom role with the following permission is needed for certain storage account che… text/html 2022-08-25T15:59:40+00:00 Anonymous (anonymous@undisclosed.example.com) https://kb.whizzbang.co/azure:qnd:kql_for_resource_graph_explorer?rev=1661443180&do=diff KQL for Resource Graph Explorer List all NSG Rules Ref: <https://blog.blksthl.com/2020/10/02/list-all-nsg-security-rules-in-one-query-using-azure-resource-graph/> Resources | where type =~ "microsoft.network/networksecuritygroups" | join kind=leftouter (ResourceContainers | where type=='microsoft.resources/subscriptions' | project SubcriptionName=name, subscriptionId) on subscriptionId | mv-expand rules=properties.securityRules | extend direction = tostring(rules.properties.direction) | exte… text/html 2022-08-11T19:57:07+00:00 Anonymous (anonymous@undisclosed.example.com) https://kb.whizzbang.co/azure:qnd:microsoft_azure?rev=1660247827&do=diff Microsoft Azure (quick-n-dirty) * quick-n-dirty Azure notes * Azure Core * Azure Architecture * Azure Admin * Azure IAM * Azure IaaS * Azure Monitoring and Logging * Azure Networking (qnd) * Security Center (qnd) * App Services (qnd) * Azure Security * Azure Powershell (qnd) * Kusto Query Language (KQL) * Azure HA * Azure Naming Conventions * Azure CLI Issues * AD Connect Password Hash Sync Learning Resources * John Savill, Youtube channel * Travis …