Welcome to the IdGuys

Our blog is focused on mostly identity topics based on Microsoft technologies.

We are passionate about sharing our knowledge and experiences in the field of identity and access management, and we hope that our blog will be a valuable resource for anyone interested in this exciting and rapidly evolving field.

Latest blog posts

October 08, 2025
Change of Source of Authority for users is now in public preview

Microsoft has opened a long-awaited door: you can now switch a synced user's Source of Authority (SoA) from AD DS to Microsoft Entra ID without delete/recreate gymnastics. It's designed for "road-to-cloud" programs where you want to retire on-premises user management but keep identities, GUIDs, and...

Read More
September 02, 2025
Improved mail notifications in Lifecycle Workflow

On lacking feature in Lifecycle Workflows used to be the option to address other people than the user's manager when sending mail.

I usually set up a reminder before a user's end date is about to occure, to make sure that an incorrect end date doesn't offboard a user by accident.

Previously, the...

Read More
August 30, 2025
Delegation of access reviews and approvals are in Public Preview

Entitlement Management has a distinct separation of being an approver or access reviewer, and being able to manage who holds those roles. If you are an approver or reviewer and need to delegate it to other people, temporary or on a permanent basis, you have been dependent on contacting someone with...

Read More
August 29, 2025
Defender for Identity now scans AD for exposed passwords in Comments

If you’ve worked with on-prem Active Directory for a while, you’ve probably seen passwords stored in user attributes and notes, especially for service accounts and shared accounts.

MDI - Example of Secret in Description

Image not found: /api/images/MDI-SecretinDescription.png

Microsoft Defender for Identity...

Read More
View All Posts