Notes on cloud, identity, and the systems we trust.
-
Federating SAP BTP with Microsoft Entra — Zero-Sync, Claim-Based Access with Governed Provisioning
A comprehensive guide to setting up federation between SAP BTP and Entra ID with claim-based access to SAP BTP resources using Entra ID identity governance and entitlement management.
-
Understanding the OAuth2.0 Protocol using Keycloak as an IdP
Exploring the mechanics behind OAuth2.0 using open-source Identity provider Keycloak
-
Open ID Connect Protocol (OIDC)
A Comprehensive explanation and Deep dive of the Open ID Connect protocol. Built on top of OAuth2.0 and supports modern authentication.
-
OAuth 2.0: A Comprehensive Deep Dive
This post explores the identity and authentication protocol that support modern day web infrastructure
-
PHS vs PTA vs ADFS — How Enterprises Actually Authenticate (And Why It Matters)
A hands-on breakdown of the three hybrid identity authentication methods used in enterprise Microsoft environments — Password Hash Sync, Pass-Through Authentication, and ADFS. Covers how each method works under the hood, when organizations choose one over another, and the real security tradeoffs involved. Includes a step-by-step lab walkthrough of deploying each method using Azure VMs, Azure AD Cloud sync, and Entra ID.
-
Detecting Azure Workload Misconfigurations Using Azure Quick Review (azqr)
A hands-on lab using azqr to scan an intentionally vulnerable Azure infrastructure for misconfigurations
-
Exploring Cloud Security Assessment & Posture Management tools
A comprehensive guide to CSPM tools like Prowler, Checkov, ScubaGear, Maester, azqr, and ThreatMapper for cloud security assessment and compliance auditing across Azure, AWS, and GCP.
-
Identity & Authentication Protocols
This post explores the identity and authentication protocol that support modern day web infrastructure