Me! Yeah! ๐
Data Transaction Coordinator!
My NoHello or rather my HelloPlease philosophy is here: ๐ https://github.com/piaudonn/knockknock
Send security notifications to your users when something important happened on their accounts (such as new MFA methods, atypical travels, TAP usage...).
License: MIT License
Me! Yeah! ๐
Data Transaction Coordinator!
My NoHello or rather my HelloPlease philosophy is here: ๐ https://github.com/piaudonn/knockknock
If you pick an existing storage account, the deployment fails if that account is in another RG than that selected during deployment
Use risk info from Azure AD IDP to notify end users of atypical travels.
Add log analytics workspace picker to select the workspace to perform KQL queries against
Add picker to select an existing or create a new storage account to the ARM deployment GUI
Given that we are using managed identity to send email, that managed identity could by default send as any users. A policy in exchange online is needed to restrict it
Review naming conventions for all modules... Notification module to be renamed to include email as more notification modules may follow (like teams)
The current script assumes that the Azure Subscription ID is the same for the RG of SEEN and the RG of the Log Analytics workspace. Because of that it cannot grant the RBAC Log Analytics Reader to the 3 modules.
Current workaround is to manually add the managed identities of the module into the Log Analytics Reader role of the LA workspace.
Proposed fix is to add a parameter for the sub ID of the LA workspace, assume it is the same when not provided and add a sub id parameter to the set RBAC function.
Go to work @piaudonn !
Workbooks
PowerShell script to setup required API / RBAC Permissions post deployment
If subscription and tenant IDs are not specified, offer a picker to the user by on the identity used to sign-in to the Graph API and the Azure Management API.
Update config Logic app to read test mode parameters from the config file and handle appropriately
Have the operators of the solution notified when a new version of SEEN is available.
Lets enable it by default and create a toggle to disable it in advanced deployment mode.
The resource graph latency is annoying. Too long to refresh when we start/stop a module from the workbook.
Would there be a way to create a module for password changes in AzureAD
We have been looking at adopting SEEN at our company, but beyond the MFA notifications we would also like to notify on password changes
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.