How to join and register iOS device (iPhone) with Azure AD?

by XDK 12. October 2019 00:49

Explanation:
Go to HOME --> Azure Active Directory --> Devices --> Device settings.

Open Apple Safari and navigate to Azure Active Directory Device Registration service Over-the-Air Profile endpoint for iOS devices.
https://enterpriseregistration.windows.net/enrollmentserver/otaprofile/<yourdomainname>

Where <yourdomainname> is the domain name that you have configured with Azure Active Directory.

https://enterpriseregistration.windows.net/enrollmentserver/otaprofile/xavierdilipkumar.com

Open Apple Safari and navigate to the Device Registration Service (DRS) Over-the-Air Profile endpoint for iOS devices.
https://adf1s.contoso.com/enrollmentserver/otaprofile

1. Log on to the webpage by using a domain account credentials
2. You are prompted to install a profile. On the Install Profile screen, click Install.
3. When prompted to confirm installation of the profile, click Install Now.

4. If your device requires a PIN to unlock the device, you are prompted to enter your PIN.
5. The profile installation is finished when you see the Profile Installed screen. Click Done.
6. Return to Safari. A message informs you that you can close or leave Safari.

Goto HOME --> Azure Active Directory --> Devices --> All devices

Tags: ,

Azure Certifications | Identity Management | Microsoft Azure Services

How to restrict registered apps from users in Azure AD tenant?

by XDK 12. October 2019 00:39

Explanation:

By default, applications registered in an Azure AD tenant are available to all users of the tenant who authenticate successfully.

To restrict registered apps from users in Azure AD tenant:
Go to HOME --> Azure Active Directory --> Enterprise applications --> All applications --> <select app> --> Manage - Properties --> "User assignment required?" to Yes

Tags:

Azure Certifications | Identity Management | Microsoft Azure Services

How to add custom domain to Azure Active Directory?

by XDK 12. October 2019 00:10

Explanation:

Go to HOME --> Azure Active Directory --> Custom domain names --> Add custom domain --> Enter your custom domain name  --> Add domain

To use xavierdilipkumar.com with Azure AD, create a new TXT record with your domain name registrar using the info provided in the screen

Click Verify

Tags: ,

Azure Certifications | Identity Management | Microsoft Azure Services

What are the difference between Managed and Federated domains in hybrid mode?

by XDK 11. October 2019 23:53

Explanation:

Managed domain is the normal domain in Azure AD and can be deployed either through "Password Hash Sync" or "Pass Through Authentication" with Single Sign On.

Federated domain is used for Active Directory Federation Services (ADFS). The federation trust will make sure that the accounts in the on-premises Active Directory are trusted for use with the accounts in Azure AD with Single Sign On.

Deployed through WS-Fed and WS-Trust:
WS-Fed: This protocol is required to join a device to Azure AD.
WS-Trust: This protocol is required to sign in to an Azure AD joined device.

Tags:

Azure Certifications | Identity Management | Microsoft Azure Services

Setup and Configure Master-Slaves Architecture in Jenkins

by XDK 26. September 2019 23:05

 

 

 

 

Setup Auto SSH Login

SSH to Jenkins Master
    $ sudo -iu jenkins
Generate Public & Private RSA Key.
    $ ssh-keygen -t rsa
       public key location : /var/lib/jenkins/.ssh/id_rsa.pub
       private key location : /var/lib/jenkins/.ssh/id_rsa
Create .ssh directory on Jenkins Slave 1 from Jenkins Master
    $ ssh -i /home/ubuntu/bin/myaccountkey.pem ubuntu@3.91.65.12 mkdir -p .ssh
Attach master public key with slave authorized directory
    $ cat .ssh/id_rsa.pub | ssh -i /home/ubuntu/bin/myaccountkey.pem ubuntu@3.91.65.12 'cat >> .ssh/authorized_keys'
Verify connection
    $ ssh ubuntu@3.91.65.12
Create .ssh directory on Jenkins Slave 2 from Jenkins Master
    $ ssh -i /home/ubuntu/bin/myaccountkey.pem ubuntu@3.95.20.115 mkdir -p .ssh
Attach master public key with slave authorized directory
    $ cat .ssh/id_rsa.pub | ssh -i /home/ubuntu/bin/myaccountkey.pem ubuntu@3.95.20.115 'cat >> .ssh/authorized_keys'

Download Jenkins Slave 1 Agent Program on Jenkins Slave 1 Machine

SSH to Jenkins Slave 1
Create bin directory.
    $ mkdir ~/bin
Goto bin and download slave.jar from master
    $ cd bin 
    $ wget http://54.81.205.161:8080/jnlpJars/slave.jar

Add Jenkins Slave 1 Machine to Jenkins Master
Login to Jenkins site

 

Launch Command
    ssh ubuntu@3.91.65.12 java -jar ./bin/slave.jar

Download Jenkins Slave 2 Agent Program on Jenkins Slave 2 Machine

SSH to Jenkins Slave 2
Create bin directory.
    $ mkdir ~/bin
Goto bin and download slave.jar from master
    $ cd bin 
    $ wget http://54.81.205.161:8080/jnlpJars/slave.jar

Add Jenkins Slave 2 Machine to Jenkins Master
Login to Jenkins site