Practical Protection: Understanding Entra ID and Passkeys
This Episode of Practical Protection is all about Passkeys, how they are different from other credential types, and how they could put an end to phishing.
May 7, 2024
Latest Articles
Using Entra ID Support for Passkey Authentication with Microsoft 365
Entra ID supports passkeys as an authentication method. In fact, support is a variation of the existing FIDO2 authentication method using device-bound passkeys managed by the Microsoft Authenticator app. Passkeys are a strong phishing-proof authentication method. The question is whether the current implementation will be considered too complicated by regular users.
April 23, 2024
Managing Exclusions for Microsoft Security Solutions
In this blog, Thijs Lecomte reviews Exclusion for Microsoft Security Solutions, why they are important, and how to manage them.
March 28, 2024
Microsoft Takes Steps to Offset Midnight Blizzard Damage
The fallout from the Midnight Blizzard attack against Microsoft continues as Microsoft takes action to harden the security of its own and customer tenants. One step is to retire the EWS Application Impersonation role. This will happen in February 2025 ahead of the retirement of Exchange Web Services in October 2026.
March 11, 2024
Exchange Online Changes, Copilot + Viva plus Identity Migration with Becky Cross: The Practical 365 Podcast S4 E14
In this episode of the Practical 365 Podcast, Steve and Rich are joined by Becky Cross to discuss Hybrid Identity Migration, new Exchange On-Premises cumulative updates, Azure OpenAI features, and more!
March 1, 2024
The Critical Need for Integrating Devices with Intune
In this blog, Jon Jarvis reviews the importance of integrating devices with Intune, and the risks that can arise from poorly managed devices.
February 21, 2024
Entra ID Multifactor Authentication Reaches 38% of All User Accounts
In a February 12, 2024 tweet, Microsoft revealed that the percentage of Entra ID multifactor authentication by user accounts has reached 38%. In this article, we show how to use sign-in records to figure out if people use MFA and calculate the percentage of user accounts protected by MFA in a tenant.
February 19, 2024
Practical Protection: Should You Allow User Application Consent?
User consent is a great example of the tension between improved security and user convenience. Users want to be able to consent to applications without requiring the help of IT, which also allows the potential for a breach. In this blog, Paul reviews your options to solving the user consent problem.
February 16, 2024
Teams & Entra ID New Features, Plus Copilot Adoption in the Real World: The Practical 365 Podcast S4 E13
On the show this week, Steve and Paul talk through a plethora of new updates arriving in Microsoft Teams, Entra ID's leap towards zero trust, plus MVP Andy Huneycutt joins the Podcast to discuss Copilot for Microsoft 365 adoption.
February 9, 2024
How to Report the MFA Status for Entra ID User Accounts
Microsoft doesn't provide a PowerShell cmdlet to return an accurate MFA status for Entra ID user accounts, but by combining data from multiple sources we can write a script to generate a report showing details of user password settings and MFA status.
January 31, 2024
Why You Should Conduct Regular Entra ID Assessments
In this article, Sean McAvinue explains what an Azure AD Assessment is and how it can assess and report on your Entra ID configuration, as well as plan the remediation of any discovered issues.
January 30, 2024
Using the Microsoft Graph PowerShell SDK to Manage Conditional Access Policies
Cmdlets from the Microsoft Graph PowerShell SDK are available to manage conditional access policies. The challenge in using PowerShell rather than the Entra ID admin center GUI is how policy settings are structured. But practice (and some experimentation) makes perfect, as we discuss in this article.
January 4, 2024