Name: Entra Suite: The Good, The Bad, and The Ugly
Start: 2025-10-29T12:00:00+02:00
End: 2025-10-29T13:00:00+02:00

This is a **Lunch and Learn Session** \- Bring your lunch and beverage of choice and **join us online**,

Microsoft Entra has evolved from a single identity platform into a complex suite of interconnected security, governance, and access services — but with power comes complexity. This session takes an unfiltered look at the **real-world strengths, gaps, and pitfalls** of working with the Entra Suite in production environments.
You’ll learn:

* **The Good:** How Entra ID, Permissions Management, and Verified ID bring unified access governance, least privilege enforcement, and identity-driven zero trust.
* **The Bad:** Where Entra’s sprawl introduces operational friction — licensing confusion, overlapping feature sets, and inconsistent experiences between portals, APIs, and logs.
* **The Ugly:** Real-world misconfigurations and architectural anti-patterns — from overprivileged service principals to non-federated app access and audit blind spots that attackers love.

We’ll also explore:

* How to **design a clean identity architecture** that scales across multi-cloud and hybrid workloads.
* Practical ways to **integrate Entra Permissions Management, Workload ID, and ID Governance** into DevSecOps pipelines.
* Tools and scripts for **monitoring, auditing, and remediating** Entra environments using Microsoft Graph, KQL, and PowerShell.

By the end, you’ll understand not only how to harness the full potential of the Entra Suite — but also how to **avoid the traps that can turn your Zero Trust strategy into Zero Visibility.**

Nicolas Blank

Warren du Toit

The South African Azure User Group

Azure Tech Groups

Technology

Cloud Computing

Microsoft Azure

As a seasoned Cloud Architect, I specialize in harnessing the full potential of Microsoft Azure and Microsoft 365 ecosystems to deliver secure, scalable, and innovative cloud solutions. With years of hands-on experience, I’ve designed, deployed, and optimized robust cloud infrastructures that empower businesses to achieve greater operational efficiency and security.




My expertise spans from infrastructure as a service (IaaS) to platform as a service (PaaS), with a proven track record of leading Microsoft Exchange Hybrid deployments and orchestrating seamless migrations to Office 365. I pride myself on my ability to reduce complexity while enhancing performance, ensuring cloud environments are both resilient and future-ready.

A key pillar of my work is security. I take a proactive, strategic approach to cloud security, integrating Microsoft's top-tier tools such as Microsoft Sentinel, Defender for Endpoint, Defender for Office 365, and Defender for Identity into comprehensive security frameworks. My solutions not only safeguard data but also anticipate and mitigate potential threats, ensuring businesses are prepared for the evolving cybersecurity landscape.

Outside of solution architecture, I am passionate about sharing my knowledge. Through my blog, ThatLazyAdmin, I provide in-depth insights, practical tips, and thought leadership on navigating the challenges and opportunities within the Microsoft cloud landscape. My goal is to empower organizations and individuals alike to maximize their cloud potential.

In a world where digital transformation is paramount, I remain committed to driving innovation and excellence by crafting cloud strategies that are not just technically sound but also aligned with business goals.

If you’re looking to harness the power of Microsoft Azure and Microsoft 365 to propel your business forward, I’d love to connect. Visit my blog for insights on maximizing cloud infrastructure and leveraging Microsoft's latest advancements.

Blog link: http://www.thatlazyadmin.com

The South African Azure User Group

Entra Suite: The Good, The Bad, and The Ugly

The South African Azure User Group

Details

Members are also interested in