Welcome to My Blog

Implementing password-less authentication methods at your organization also requires you to pull metrics on usage of these methods to gauge user adoption. Anything end-user facing must always be tracked to understand usage patterns and ways to improve the user experience should users be running into any adoption challenges. Password-less authentication is extremely user friendly and […]

You can use FIDO2 hardware security keys plugged into your physical desktop over the Citrix HDX remoting protocol for use with virtualized Windows Desktop and Server OSes that can be hundreds of miles away running in your data center or cloud tenant (Azure IaaS). There are many use cases for FIDO2 keys used over a […]

Let’s buy more licenses for VPN! Let’s open up RDP port 3389 from anywhere to office PCs! Let’s turn off multi-factor authentication so we don’t have to train users that may have difficulty with it! EUC and Security-focused IT professionals know these are usually very poor choices for IT organizations. Yet these are some of […]

It was an especially beautiful November week in 2017 when I visited Microsoft’s Redmond campus. Autumn in Redmond is such an amazing time. I’ve never seen such a variety of colors everywhere I stepped. Every fallen leaf felt like it was unique but somehow fit into a big beautiful pattern on the ground. I don’t […]

A full day sharing info about some of my favorite topics! I had a great time presenting at the CUGC Texas XL 2020 regional conference at Space Center Houston on February 26th, 2020. There was a great turnout from Austin, Dallas, and Houston community members with over 135 attendees! A big thanks to all speakers, […]

If your environment is a Microsoft Active Directory-based environment and leverages Microsoft Azure Active Directory (Azure AD or AAD for short) to extend your deployment as your primary cloud-based identity provider (IdP), then you must plan to deploy the 3 modern password-less access management solutions that work with Azure AD in order to take full […]

renaissancea period of high artistic or cultural development At the cusp of a new decade, we are now firmly in the renaissance of passwordless authentication.  Passwordless authentication has been around for many years but is only now in a form where enterprises can easily consume and deploy it for their users in modern computing settings […]

The future state of password-less authentication for Microsoft Windows enterprise environments will be a combination of 3 options: Windows Hello for Business Microsoft Authenticator FIDO2 hardware security keys Of these, FIDO2 is the non-proprietary method and can be used with other IdPs (identity providers), non-Microsoft environments, as well as many consumer web services which means […]

The community-driven paperback book initiated by my friends Bas van Kaam and Christiaan Brinkhoff is available for sale on Amazon. If you haven’t picked up your copy yet, grab it now! Link to buy the book: https://www.amazon.com/dp/1797692100 Reasons to buy this book: $11.18 on the Amazon US site, with similar pricing on Amazon Germany, France, […]

It’s finally here! Full Windows SSO (single sign-on) with Windows virtual apps and virtual desktops through Citrix Workspace when using modern web authentication like Azure AD and modern access management like password-less phone sign-in with Microsoft Authenticator over the HDX remoting protocol! I know that’s a mouthful so an easier way to say it, ultra-secure […]