The honest answer is architecture, not product loyalty Hello. The Intune vs SCCM debate is usually presented as cloud vs on-prem, modern vs legacy, future vs past. Nice and simple. Also wrong. In real enterprise environments, endpoint management touches much more than app deployment. It connects to Microsoft Entra ID, Conditional Access, Defender, Azure Virtual…
Month: April 2026
Windows Server 2025 just became a supported platform for Microsoft Entra Connect Sync.
TL;DR Entra Connect Sync now supports Windows Server 2025you can upgrade safely and stay supportedyou get better security and performancebut Microsoft is clearly pushing towards Cloud Sync The question is no longer “can you upgrade?”It is “how long do you want to stay on-prem?” Sounds like a routine compatibility update.It isn’t. This is one of…
Azure is a hierarchy-driven control plane
firstly if u have no time: TL;DR Azure = hierarchical control planeTenant = identityManagement Groups = governanceSubscriptions = isolationResource Groups = deployment scopeResources = execution Policy + RBAC + Locks = real control Azure is not flat. It is a layered model where authorization, policy and scope inheritance define behaviour. At a technical level, everything…
Kerberos Hardening Guide (2026 Edition)
From RC4 to AES — What Actually Changes and What You Must Fix Now 🔥 Why This Matters (No Marketing, Just Reality) Kerberos is quietly going through one of the most important security shifts in years:RC4 is dying. AES is becoming the default. This is not just a “nice security improvement”. This will: break legacy…
Sentinel + GitHub + IP allow list = everything works… until u turn security on
There is a very specific type of failure that shows up in Microsoft Sentinel setups.No errors. No alerts. No logs screaming at u. Just… nothing works. You connect the GitHub app.Authorisation succeeds.UI looks fine. And your repositories simply do not appear. Then u disable the IP allow list in GitHub… and suddenly everything works. That…
Azure is “infinite”… until it very much is not
Cloud marketing has done a great job selling one idea.Infinite scale. Infinite capacity. Infinite everything. Right up until you try to start a VM in a busy region and Azure quietly replies: no capacity available. That is the moment when “cloud elasticity” stops being a philosophy and starts being a constraint. And this is exactly…