Microsoft Entra Group Source of Authority Conversion with Cloud Sync WritebackMar 13, 2026·15 min read
The Path to Success for Governing AI Agents with Microsoft Entra Agent IDIntroduction Most organizations do not wake up one morning and decide to run an agent fleet. It happens in increments. A Copilot appears to summarize meetings. A bot gets introduced to triage requestsMar 31, 2026·17 min read
Building a Secure Password Reset API with Azure Functions, Easy Auth, and LDAPSJan 14, 2026·10 min read
Zero-to-DC: Building a Disposable Active Directory Lab in Azure with Bicep and PowerShellIntroduction This all started from a very practical problem: I wanted a disposable, repeatable Active Directory lab I could spin up for demos, tutorials, and future blog posts (stay tuned). I needed something I could tear down and rebuild without fea...Dec 14, 2025·15 min read
A Guide to Deploying Self‑Hosted GitHub Runners on Azure Container AppsIntroduction This post is a practical deep dive into running self‑hosted GitHub Actions runners on Azure Container Apps (ACA). The goal: ephemeral, on‑demand compute that scales up only when there are GitHub workflow jobs in the queue and scales to z...Nov 30, 2025·21 min read
Ephemeral Pull Request (PR) Environment with Microsoft Graph BicepIntroduction This project demonstrates an end-to-end ephemeral pull request (PR) environment pattern using: Microsoft Graph Bicep to provision an application, service principal, security group, test accounts, custom OAuth2 permission scopes, and an ...Nov 9, 2025·12 min read
Enhance Workload Identity Security with Just-In-Time RBAC in GitHub Actions and PowerShellIntroduction This post was born from the idea of, "gee I wonder if you could create a Just-In-Time (JIT) privileged access workflow using GitHub Actions?" After some experimentation and much debugging, the answer is yes 😆 — and the resulting pattern...Nov 7, 2025·18 min read
Automating Blob Cleanup with Azure Storage Lifecycle Management PoliciesSometimes the solution you're building doesn't need another Function App, another timer trigger, or another piece of custom code to maintain. Azure Storage has a built-in lifecycle management engine that can handle age-based cleanup policies entirely...Aug 31, 2025·8 min read
Monitoring Azure Storage Queues with PowerShellKeeping an eye on Azure Storage Queue backlogs is essential for reliable systems and scale decisions. Most teams want per-queue visibility (not just account-level metrics), simple dashboards/alerts, and a repeatable deployment story. This blog docume...Aug 23, 2025·8 min read
