Welcome to My Blog

Why haven’t you gone passwordless yet?  I stopped using passwords with my virtual desktop environments, physical machines, Microsoft 365 (Office 365), and anything protected with Azure AD for what feels like ages ago now.  Going passwordless means strong authentication into the services you use daily.  I use a biometric to login every day, and you […]

EUC and Security Engineers have always had the capability to add a EULA to Citrix StoreFront and/or Citrix NetScaler Gateway (aka Citrix Gateway) for legal and compliance requirements but now with cloud-based Citrix Workspace and modern identity providers (IdPs), you must rely on the IdP to control the authentication and authorization flow. The SP (service […]

Implementing password-less authentication methods at your organization also requires you to pull metrics on usage of these methods to gauge user adoption. Anything end-user facing must always be tracked to understand usage patterns and ways to improve the user experience should users be running into any adoption challenges. Password-less authentication is extremely user friendly and […]

You can use FIDO2 hardware security keys plugged into your physical desktop over the Citrix HDX remoting protocol for use with virtualized Windows Desktop and Server OSes that can be hundreds of miles away running in your data center or cloud tenant (Azure IaaS). There are many use cases for FIDO2 keys used over a […]

Let’s buy more licenses for VPN! Let’s open up RDP port 3389 from anywhere to office PCs! Let’s turn off multi-factor authentication so we don’t have to train users that may have difficulty with it! EUC and Security-focused IT professionals know these are usually very poor choices for IT organizations. Yet these are some of […]

It was an especially beautiful November week in 2017 when I visited Microsoft’s Redmond campus. Autumn in Redmond is such an amazing time. I’ve never seen such a variety of colors everywhere I stepped. Every fallen leaf felt like it was unique but somehow fit into a big beautiful pattern on the ground. I don’t […]

A full day sharing info about some of my favorite topics! I had a great time presenting at the CUGC Texas XL 2020 regional conference at Space Center Houston on February 26th, 2020. There was a great turnout from Austin, Dallas, and Houston community members with over 135 attendees! A big thanks to all speakers, […]

If your environment is a Microsoft Active Directory-based environment and leverages Microsoft Azure Active Directory (Azure AD or AAD for short) to extend your deployment as your primary cloud-based identity provider (IdP), then you must plan to deploy the 3 modern password-less access management solutions that work with Azure AD in order to take full […]

renaissancea period of high artistic or cultural development At the cusp of a new decade, we are now firmly in the renaissance of passwordless authentication.  Passwordless authentication has been around for many years but is only now in a form where enterprises can easily consume and deploy it for their users in modern computing settings […]

The future state of password-less authentication for Microsoft Windows enterprise environments will be a combination of 3 options: Windows Hello for Business Microsoft Authenticator FIDO2 hardware security keys Of these, FIDO2 is the non-proprietary method and can be used with other IdPs (identity providers), non-Microsoft environments, as well as many consumer web services which means […]