Contact Us

Blog

Microsoft Azure Vulnerability Still Affecting Thousands of New Subdomains Each Month
23 May 2023

Microsoft Azure Vulnerability Still Affecting Thousands of New Subdomains Each Month

Subdomain takeover is a vulnerability that has plagued cloud users since the beginning of the cloud. Keytos Researches uncover an easy way to find thousands of new vulnerable domains each month.

Best practices for going passwordless on-premises use FIDO2 or SmartCard?
04 May 2023

FIDO2 for On-Premises Active Directory. Is it the Right Way to Go Passwordless?

One of the most common questions when going passwordless is how do you support legacy systems, While Microsoft supports FIDO2 on premises, the best solution, is to use SmartCard for legacy and FIDO2 for modern authentication.

Best SSL Certificate Monitoring Systems
05 Apr 2023

Best SSL Discovery and Monitoring Tools

With the exponential growth of SSL Certificates, it is now impossible to manually manage and discover SSL Certificates. In this blog post we will go over what to look in an SSL monitoring tool to see which one is best for you.

How To to Protect Azure Infrastructure In a Zero-Trust World
22 Mar 2023

How We Protect Our Infrastructure By Following Azure Identity Security Best Practices

As a security company that secures the most critical workflows for large organizations, we must hold a high security bar for our infrastructure. In this blog we share the Azure best practices we follow.

How To Enable Self Onboarding for Passwordless (FIDO2, Azure CBA, and Phone Authentication) In Azure
15 Mar 2023

How To Enable Self Onboarding for Passwordless (FIDO2, Azure CBA, and Phone Authentication) In Azure

As more organizations move to cloud-based solutions, the importance of secure and compliant authentication methods has become increasingly critical. While passwordless authentication methods are the pinnacle of security, they have a reputation of being incredibly tedious to set up. Learn how EZSmartCard can help you improve security while removing onboarding friction with FIDO2, Azure CBA, and Passwordless Phone Authentication.

Stop Blindly Trusting RDP Servers with Trust on First Use (TOFO)
20 Feb 2023

How To Create RDP SSL Certificates for Azure VMs

While Remote Desktop Protocol (RDP) is a convenient and efficient way to access remote systems, if it is not properly administered, it can be vulnerable to some attacks such as Man-In-The-Middle attacks caused by using the Trust on First Use (TOFU) model. In this blog post, we will discuss why RDP TOFU is a bad security model and why organizations should use SSL certificates instead.

How to create Intune SCEP Certificate Authority In Azure
31 Jan 2023

How To Create an Azure Based Certificate Authority for Intune

EZCA enables Azure customers to have a secure and compliant Certificate Authority in Azure that connects to Intune allowing customers to issue device certificates without the need to run an on-premises ADCS Certificate Authority.

How to secure GitHub with Zero Trust Just In Time Access
23 Jan 2023

How to secure GitHub with Zero Trust Just In Time SSH Access

Now that organizations are securing their infrastructure by following Zero trust best practices, attackers are moving left in the pipeline and attacking GitHub. Earlier this month, Okta said that its private GitHub repositories were hacked. When the leaders in authentication and Identity Access Management (IAM) are hacked, it’s time to start taking things much more seriously.

How to get users to use Authenticator App
29 Dec 2022

How To Deal With Users Refusing to Install Microsoft Authenticator Application

With the move to passwordless and App based MFA, It is understandable that your staff might have concerns about installing the Microsoft Authenticator App, In this blog we will walk you through how to deal with this and secure your organization with strong MFA.

EZCA The First ACME CA with ADCS Support
01 Dec 2022

Enable ACME in Your Private PKI

With the move to the cloud, the days of manually managing SSL certificates are gone. Now, Most organizations are moving to the ACME protocol. An easy to use protocol that automatically renews your SSL certificates preventing costly outages while freeing your engineers time to focus on other critical tasks.