Welcome to My Blog
Here is a masonry blog layout with no sidebar-
How to allow remote users to enroll smartcard certificates on a YubiKey over an HDX session for certificate lifecycle management using Citrix Virtual Apps and Desktops Service
Every month it seems more and more organizations are embracing modern passwordless strong authentication in their end-user computing environments. Just in the last 3 months, I’ve noticed a significant uptick in people asking questions which is a great sign that passwordless authentication is being embraced by organizations. Recently I’ve had a lot of people ask […]
-
FIDO Alliance Authenticate conference session recap on Citrix Workspace strong authentication with FIDO2
A few months ago I was invited to speak at the FIDO Alliance‘s inaugural Authenticate conference by Citrix and the FIDO Alliance. A big thanks to Mark Howell and Andrew Shikiar for the opportunity to join them and share knowledge with the identity and access management community. When I started working with this strong passwordless […]
-
A deep dive into the Citrix HDX FIDO2 and Windows Hello optimized virtual channel with virtual desktops and apps using USB, NFC, BLE, and built-in authenticators
FIDO2 is as groundbreaking for the Internet as HTTP going to HTTPS many years ago in my opinion. Right now there is a consortium of 260+ companies you may recognize trying to positively change the world and make both your personal life and enterprise life secure and easy to use across the Internet down to […]
-
Using Windows Hello FIDO2 capability with web browsers, Microsoft WVD, Teams, and native Windows apps for passwordless logins using your fingerprint or face
Why haven’t you gone passwordless yet? I stopped using passwords with my virtual desktop environments, physical machines, Microsoft 365 (Office 365), and anything protected with Azure AD for what feels like ages ago now. Going passwordless means strong authentication into the services you use daily. I use a biometric to login every day, and you […]
-
How to use Azure AD Conditional Access to add a Terms of Use EULA to Citrix Workspace, Microsoft WVD, Office 365, and SaaS apps
EUC and Security Engineers have always had the capability to add a EULA to Citrix StoreFront and/or Citrix NetScaler Gateway (aka Citrix Gateway) for legal and compliance requirements but now with cloud-based Citrix Workspace and modern identity providers (IdPs), you must rely on the IdP to control the authentication and authorization flow. The SP (service […]
-
How to report on Microsoft Authenticator password-less phone sign-in & FIDO2 security key usage using Azure AD & Azure Monitor Log Analytics
Implementing password-less authentication methods at your organization also requires you to pull metrics on usage of these methods to gauge user adoption. Anything end-user facing must always be tracked to understand usage patterns and ways to improve the user experience should users be running into any adoption challenges. Password-less authentication is extremely user friendly and […]
-
How to use FIDO2 security keys remotely inside a virtual desktop session hundreds of miles away using Citrix HDX USB redirection and Microsoft Azure AD
You can use FIDO2 hardware security keys plugged into your physical desktop over the Citrix HDX remoting protocol for use with virtualized Windows Desktop and Server OSes that can be hundreds of miles away running in your data center or cloud tenant (Azure IaaS). There are many use cases for FIDO2 keys used over a […]
-
Work from home reality and making positive IT decisions in response to the COVID-19 Coronavirus pandemic
Let’s buy more licenses for VPN! Let’s open up RDP port 3389 from anywhere to office PCs! Let’s turn off multi-factor authentication so we don’t have to train users that may have difficulty with it! EUC and Security-focused IT professionals know these are usually very poor choices for IT organizations. Yet these are some of […]
-
How to use Microsoft WVD, Windows 10 multi-session, FSLogix, & MSIX app attach to build an Azure-powered virtual desktop experience
It was an especially beautiful November week in 2017 when I visited Microsoft’s Redmond campus. Autumn in Redmond is such an amazing time. I’ve never seen such a variety of colors everywhere I stepped. Every fallen leaf felt like it was unique but somehow fit into a big beautiful pattern on the ground. I don’t […]
-
Driving Modern Passwordless Authentication: Citrix Workspace and Microsoft Azure Active Directory
A full day sharing info about some of my favorite topics! I had a great time presenting at the CUGC Texas XL 2020 regional conference at Space Center Houston on February 26th, 2020. There was a great turnout from Austin, Dallas, and Houston community members with over 135 attendees! A big thanks to all speakers, […]