Writing about cloud engineering, cooking, BJJ, and whatever else is taking up space in my head at the moment.
MFA is no longer enough on its own. Attackers steal tokens after authentication is complete — bypassing MFA entirely. Here's how Continuous Access Evaluation and token binding change the equation.
The retirement of MS-100 and MS-101 signals a deliberate repositioning of the Microsoft certification landscape — from legacy admin to role-based cloud architect. Here's how to interpret it and plan your path accordingly.
AVD is often sold as a VPN replacement. That framing undersells it. The real case is about security architecture — keeping data in Azure and off local devices — and the cost economics of multi-session Windows 11.
Midway through my AZ-700 prep, here's what surprised me, what I already knew, and how I'm structuring my study approach around real-world architecture scenarios.
14 hours, two temperature stalls, one slightly overconfident home cook, and a result that was — honestly — better than expected. Notes from the first proper low-and-slow on the new grill.
There's more overlap between grappling and troubleshooting infrastructure than I initially expected. Both require composure, systematic thinking, and the willingness to start from first principles when you're stuck.
Hit an unexpected Forbidden error with cross-tenant role assignments and MSI identity in a production environment. Here's how I diagnosed and resolved it, and why it happens in the first place.
📝 To add a new post: copy blog/posts/_template.html, update the content,
then add a new <li> to the list above.