Klaus Bierschenk

Klaus Bierschenk

Director Consulting Expert @CGI Germany; Author; Speaker, Blogger

Executive Consultant @CGI Germany; Author; Speaker, Blogger

Murnau am Staffelsee, Germany


I work as a Technology Consultant with the Microsoft Identity- and Security Portfolio. I have been in the IT Industry for many years and support customers and enterprise environments focused on hybrid setups and Azure/M365 Technology
From time to time I share my knowledge as a speaker in the community. I also write articles in the German Press und you can find me blogging at "nothingbutcloud.net".

Ich arbeite als Technology Berater mit dem Schwerpunkt auf Microsoft Identity- und Security Technologien. Dabei betreue ich Enterprise Kunden zu Fragestellungen rund um Active Directory, sowohl On-Premises als auch im Cloud Kontext von Azure und M365.
Wenn es meine Zeit erlaubt, teile ich meine Erfahrungen als Referent in der Community. Schreibe Artikel in der deutschen Presse und in meinem Blog, zu finden unter "nothingbutcloud.net".

Area of Expertise

  • Information & Communications Technology


  • Azure AD
  • Zero-Trust Security
  • Azure Active Directory
  • Azure Hybrid Identity
  • Azure Security
  • Azure (Public/Hybrid)
  • Azure
  • Azure AD B2B
  • MS Entra ID


Identities are everywhere. A challenge for user management and workflows en

Hybrid setups are common. And one of the most important mechanism is synchronization of identities for such setups. Identities are not just going from On-Premises to MS Entra ID. Meanwhile Entra ID is in the middle and lots of functions and technologies are acting here: Entra Connect Sync, Entra Connect Cloud Sync, Lifecycle Workflows, App- / HR-Driven Provisioning. And now we have also a new feature called cross tenant synchronization.
Let us discuss which tool can be an answer for which requirement in your strategy.
During the presentation we will deal with an exemplary company and look at practical examples of what the setup of the technologies looks like

The presentation is at level 300.
Basic knowledge of Active Directory is recommended.
Knowledge of Hybrid Setups is helpful, but not required.
The duration of the session is about 60 minutes.

Whats new in Zero Trust and Admins? - Admins need more than hope en de

Administrative identities are a popular target for compromising.
Microsoft Entra ID provides powerful tools to reduce the attack surface and we look at the top 5 do's and don'ts in MS Entra ID.
- AUs (Administrative Units) used correctly. What are the strengths and weaknesses for non-admins?
- Access Reviews under the hood. Tracking down unused accounts and more.
- Privileged Identity Management. How to use PIM groups properly and other hidden day-to-day admin features for targeted role management (JIT and JEA).
- Be prepared for emergencies. Concept and operational for break glass accounts
- Monitor and respond to unused computer and user accounts (using Powershell and/or Azure Automation).

The session has a duration of about 50min. It is aimed at administrators of all types. We talk at level-300.

Zero Trust für Admins. Top 5 Tools für ein sichereres Entra ID Management en de

Identitäten von Administratoren sind ein beliebtes Ziel für Kompromitierung.
Microsoft Entra ID bietet starke Werkzeuge um dem Einhalt zu gebieten und wir schauen uns die Top 5 do's and don'ts der Entra Werkzeuge für Admins an.
- AUs (Administrative Units) richtig eingesetzt. Was sind die Stärken und die Schwächen für Nicht-Admins?
- Access Reviews unter der Haube. Aufspüren unbenutzter Konten und noch mehr
- Privileged Indentity Management. Wie benutze ich PIM-Gruppen richtig und andere Funktionen für den Adminalltag für zielgerichtetes Rollenmanagement (JIT und JEA)
- Für den Notfall gewappnet sein. Konzept und operatives für Break Glass Accounts
- Überwachen unbenutzter Computer- und Benutzerkonten und Reaktionen darauf (mit Powershell und/oder Azure Automation)

Die Session hat eine Dauer von ca. 50 min. Sie richtet sich an Administratoren jeder couleur.

Do you still need SSPR in a passwordless era? en de

How important is Self Service Password Reset (SSPR) in a time where "passwordless" is more and more important?
As long as we have passwords, it should be very important!
We look at the challenges of SSPR in MS Entra ID with the following content:
- Overview of policies and their capabilities
- Setup in hybrid environments (on-premises)
- Integration of MS Entra ID SSPR into the Windows Computer login screen
- Hardening of the service account that writes passwords against the local AD DS (Entra Connect - AD DS Connector Account)
- Yubico Authenticator App as SSPR method
- Customization options with the new "branding" functionalities
- Monitoring and insights

The session has a duration of about 60min. We talk at level-300.

Wie wichtig ist SSPR in einer passwortlosen Zeit noch? en de

Wie wichtig ist Self Service Password Reset (SSPR) in einer Zeit, in der es immer weniger Passwörter gibt und "passwortlos" immer wichtiger wird?
Solange es noch Passwörter gibt, dürfte es wohl sehr wichtig sein!
Wir schauen uns die Herausforderungen von SSPR in MS Entra ID mit folgenden Inhalten an:
- Überblick über die Richtlinien und deren Möglichkeiten
- Setup in hybrider Landschaften (On-Premises)
- Integration von SSPR in den Anmeldebildschirm von Windows Computer
- Härtung des Service Accounts, der die Passwörter gegen das lokale AD DS schreibt (Entra Connect - AD DS Connector Account)
- Yubico Authenticator App als SSPR Methode
- Anpassungsmöglichkeiten über die neue "Branding" Funktionen
- Monitoring und Überwachung

Level-300 Session mit einer Dauer von etwa 60 Minuten.

European Cloud Summit

I am presenting "Identities everywhere. A challenge for user management and workflows"

May 2024 Wiesbaden, Germany

secIT by Heise

Zero Trust Identity - Top 5 MS Entra ID Features aus der Praxis für Admins

March 2024 Hannover, Germany

Azure AMA - Azure AD Connect und Cloud Sync

Azure Meetup Bonn

July 2022

Azure Meetup in Stuttgart

Zero trust identity - minor but powerful functionalities in Azure AD

February 2022

Cloud Identity Summit '21 Sessionize Event

September 2021

Cloud Identity Summit 2021

Error-free with hybrid synchronization

September 2021

Azure Meetup Bonn

Synchronisation – Schaltzentrale einer hybriden Infrastruktur

June 2021

Cloud Identity Summit 2020

Synchronization - Backbone of a hybrid setup

October 2020

Klaus Bierschenk

Director Consulting Expert @CGI Germany; Author; Speaker, Blogger

Murnau am Staffelsee, Germany


Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.

Jump to top