Welcome to My Blog
Here is a masonry blog layout with no sidebar-
A deep dive into the Citrix HDX FIDO2 and Windows Hello optimized virtual channel with virtual desktops and apps using USB, NFC, BLE, and built-in authenticators
FIDO2 is as groundbreaking for the Internet as HTTP going to HTTPS many years ago in my opinion. Right now there is a consortium of 260+ companies you may recognize trying to positively change the world and make both your personal life and enterprise life secure and easy to use across the Internet down to […]
-
Using Windows Hello FIDO2 capability with web browsers, Microsoft WVD, Teams, and native Windows apps for passwordless logins using your fingerprint or face
Why haven’t you gone passwordless yet? I stopped using passwords with my virtual desktop environments, physical machines, Microsoft 365 (Office 365), and anything protected with Azure AD for what feels like ages ago now. Going passwordless means strong authentication into the services you use daily. I use a biometric to login every day, and you […]
-
How to use Azure AD Conditional Access to add a Terms of Use EULA to Citrix Workspace, Microsoft WVD, Office 365, and SaaS apps
EUC and Security Engineers have always had the capability to add a EULA to Citrix StoreFront and/or Citrix NetScaler Gateway (aka Citrix Gateway) for legal and compliance requirements but now with cloud-based Citrix Workspace and modern identity providers (IdPs), you must rely on the IdP to control the authentication and authorization flow. The SP (service […]
-
How to report on Microsoft Authenticator password-less phone sign-in & FIDO2 security key usage using Azure AD & Azure Monitor Log Analytics
Implementing password-less authentication methods at your organization also requires you to pull metrics on usage of these methods to gauge user adoption. Anything end-user facing must always be tracked to understand usage patterns and ways to improve the user experience should users be running into any adoption challenges. Password-less authentication is extremely user friendly and […]
-
How to use FIDO2 security keys remotely inside a virtual desktop session hundreds of miles away using Citrix HDX USB redirection and Microsoft Azure AD
You can use FIDO2 hardware security keys plugged into your physical desktop over the Citrix HDX remoting protocol for use with virtualized Windows Desktop and Server OSes that can be hundreds of miles away running in your data center or cloud tenant (Azure IaaS). There are many use cases for FIDO2 keys used over a […]
-
Work from home reality and making positive IT decisions in response to the COVID-19 Coronavirus pandemic
Let’s buy more licenses for VPN! Let’s open up RDP port 3389 from anywhere to office PCs! Let’s turn off multi-factor authentication so we don’t have to train users that may have difficulty with it! EUC and Security-focused IT professionals know these are usually very poor choices for IT organizations. Yet these are some of […]
-
How to use Microsoft WVD, Windows 10 multi-session, FSLogix, & MSIX app attach to build an Azure-powered virtual desktop experience
It was an especially beautiful November week in 2017 when I visited Microsoft’s Redmond campus. Autumn in Redmond is such an amazing time. I’ve never seen such a variety of colors everywhere I stepped. Every fallen leaf felt like it was unique but somehow fit into a big beautiful pattern on the ground. I don’t […]
-
Driving Modern Passwordless Authentication: Citrix Workspace and Microsoft Azure Active Directory
A full day sharing info about some of my favorite topics! I had a great time presenting at the CUGC Texas XL 2020 regional conference at Space Center Houston on February 26th, 2020. There was a great turnout from Austin, Dallas, and Houston community members with over 135 attendees! A big thanks to all speakers, […]
-
Why Windows Hello for Business, Microsoft Authenticator, and FIDO2 are not a suggestion, but a requirement for your Azure AD powered enterprise – PART 2
If your environment is a Microsoft Active Directory-based environment and leverages Microsoft Azure Active Directory (Azure AD or AAD for short) to extend your deployment as your primary cloud-based identity provider (IdP), then you must plan to deploy the 3 modern password-less access management solutions that work with Azure AD in order to take full […]
-
Understanding the passwordless authentication renaissance and how to plan your Microsoft Windows based organization for this change – PART 1
renaissancea period of high artistic or cultural development At the cusp of a new decade, we are now firmly in the renaissance of passwordless authentication. Passwordless authentication has been around for many years but is only now in a form where enterprises can easily consume and deploy it for their users in modern computing settings […]