No More Secret Rotas: Azure DevOps to Azure with Workload Identity Federation

25 November 2025

Series goal (reminder): Stand up a practical, multi‑environment Terraform platform on Azure DevOps (with split pipelines for Infra/Entra/MS Graph), using secure auth, remote state, and reusable modules—scaling from Dev to Prod.

Day 3 — No More Secret Rotas: Workload Identity Federation vs App Registration

What You’ll Build Today

  • WIF Deep Dive: Understand why we struggled with WIF in Day 1 and how we fixed it
  • App Registration Fallback:...
Read More
Blocking WhatsApp on Windows 11 with AppLocker and Intune September 29, 2025

Learn how to block WhatsApp Desktop on Windows 11 using AppLocker and Intune. Step-by-step guide for IT engineers: identify the...
Terraform on Azure DevOps, Day 2: Locking State & Managing Secrets with Azure Storage and Key Vault September 20, 2025

Secure your Terraform pipeline. Learn to enforce Azure Blob state locking, wire Azure DevOps variable groups to Key Vault for...
Terraform on Azure DevOps, Day 1: First UK South Deploy with Secure State September 17, 2025

Spin up a secure Terraform pipeline in Azure DevOps using Workload Identity Federation and Azure Storage state, and deploy a...

Microsoft Teams Automatically Set Work Locations Based on Organization’s Wi-Fi Network June 30, 2025

Step-by-step guide for setting up network-based location detection in Microsoft Teams to support Microsoft Places and desk booking.
Fixing "This Device Belongs to Your Organisation" Message on Intune Android Devices June 16, 2025

Learn how to resolve the “This device belongs to your organisation” footer on Intune Android devices by resetting the Managed...
Migrating away from MSOnline Powershell Module May 27, 2025

Embracing microsoft graph