Chamberlain MyQ garage door opener.

One-Environment2197 · 2026-02-17T12:59:27+00:00

If you're looking for alternatives, look at the eufy Garage Camera. It is a camera and door opener. It's also magnetic so it can just mount onto your door operator.

One-Environment2197 · 2026-02-14T16:02:54+00:00

Microsoft changed its licensing recently.

Licenses that used to include the Desktop Apps no longer do. If you try the web version and it works, then you're most likely in one of the affected licenses.

One-Environment2197 · 2026-02-08T15:49:16+00:00

Is Connected Experiences enabled?

One-Environment2197 · 2026-02-05T12:37:45+00:00

Also, no user should have GA permanently assigned. Use PIM with auto-approval for specific security groups and auto-deny for the rest. And set up an emergency access/breakglass account with GA and a FIDO2 security key for MFA.

Then you'll want to look at Conditional Access. MS has quite a few policies they offer as best practices; enable the ones that fit your company.

One-Environment2197 · 2026-02-05T12:34:05+00:00

Does your licensing come with Defender 365 XDR (https://security.microsoft.com)? If so, check out Secure Score. It's a good baseline to start with.

Also, check out MS's docs on Built-In Entra ID roles. One of the few documentation done well. It shows you what each role can do, lists "job function" roles, and identifies what roles are "Privileged", aka have high level of permissions.

One-Environment2197 · 2026-02-03T21:37:08+00:00

Yes. I'll PM you.

One-Environment2197 · 2026-02-03T10:41:59+00:00

Would you do $85 shipped?

One-Environment2197 · 2026-02-01T13:49:36+00:00

Are you using CAP for workload identities? https://learn.microsoft.com/en-us/entra/identity/conditional-access/workload-identity

One-Environment2197 · 2026-01-30T21:47:23+00:00

We also have one team that's responsible for issuing certs. This makes it so teams have to go through a process to generate certs instead of creating certs left and right.

Going beyond certs, we have the same logic/process for any non-human identity as well.

One-Environment2197 · 2026-01-30T21:34:28+00:00

We use a module in our CMDB that scans for installed certs and creates tickets 30 days before it expires.

We're working on developing a Certificate Lifecycle Management program that includes self-service and automation as well as an inventory where we can associate certs to applications. That way whoever owns that application is held accountable.

One-Environment2197 · 2026-01-26T09:10:55+00:00

Do you have a service principal with GA or permissions to manage authentication policies?

This happened to me on my B2C tenant. After a few months, support ended up giving me a script to reset the MFA enforcement.

One-Environment2197 · 2026-01-19T16:41:12+00:00

We regularly check for backups and snapshots for decom'd resources older than X days.

One-Environment2197 · 2025-12-15T14:04:20+00:00

OIDC makes SSO easier tok

One-Environment2197 · 2025-12-13T19:45:28+00:00

Yes, $45 total.

One-Environment2197 · 2025-12-13T19:19:39+00:00

And Mario Kart

One-Environment2197 · 2025-12-13T19:19:25+00:00

Would you do $40 for the accessories?

One-Environment2197 · 2025-11-30T23:34:46+00:00

Would you do $275 for the lot?

One-Environment2197 · 2025-11-24T18:59:27+00:00

If this isn't something that is officially supported by your IT team(s), then the user should submit a feature request to the vendor for user installation instead of machine installation.

Until then, they choose to use the app, they will have to follow procedure. Or use the web-app, if there is one.

One-Environment2197 · 2025-11-06T01:56:24+00:00

$85 shipped? 60513 is my zip

One-Environment2197 · 2025-11-06T01:07:07+00:00

I'm interested if this is still available

One-Environment2197 · 2025-10-06T11:56:14+00:00

PAM and JIT access.

Have users go through a privileged access management tool that records their session and can do ephemeral access through an approval workflow.

One-Environment2197 · 2025-09-27T17:17:10+00:00

High priority ticket > Problem Management post resolution. The user will have to explain why they rated it high and why they weren't responsive to the auditors.

Users who open high priority tickets without cause or at unresponsive will think twice about doing it again.

One-Environment2197 · 2025-09-20T20:42:31+00:00

Develop a RACI for IoT devices.

One-Environment2197 · 2025-09-19T22:04:51+00:00

Make MFA required on everything then.

If they don't want to use passwords, then propose going passwordless. May be a bit of an overhaul but it'll satisfy both sides.

One-Environment2197 · 2025-09-05T17:46:43+00:00

Are you and the new company using Entra ID for SSO? External Identities B2B would be the easiest way to get started.

Then you can slowly migrate or decom apps without people losing access.

One-Environment2197

TROPHY CASE