Welcome to Bsides Seattle 2020
Back To Schedule
Saturday, October 17 • 2:00pm - 2:55pm
Y'all Tryna Understand Azure AD and RBAC or Nah?

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Azure roles and relationships are complex. Managing Azure AD permissions and can be complicated and is often misunderstood by administrators. In addition, management of Role-Based Access Controls can complicate things further and misconfigurations usually lead to unintended consequences. This talk will discuss Azure AD, Azure RBAC, and how to interpret the relationships between them. There will also be a demonstration of Stormspotter, a tool written by the Azure Red Team that helps visualize these relationships from an attack and defense perspective. 

avatar for Leron Gray

Leron Gray

Security Software Engineer, Microsoft
Leron (aka daddycocoaman) is a ten year Navy veteran and former NSA operator with several years of offensive security experience. He's currently works on the Azure Red Team at Microsoft, loves winning all the CTFs, and enjoys writing things in Python and Python-like languages. He's... Read More →

Saturday October 17, 2020 2:00pm - 2:55pm PDT
Track A