Search for: conditional access policies

175 Results

Resolving the Five Most Common Conditional Access Misconfigurations

Misconfigured Conditional Access policies may introduce unnecessary risk to your tenant. That is why it is important to make sure these policies are properly configured. In this blog, Brandon Colley reviews the five most common Conditional Access misconfigurations.

Continue Reading Resolving the Five Most Common Conditional Access Misconfigurations

Performing a Conditional Access Assessment with PowerShell

Conditional access policies grow and change as the tenant grows and changes, but not all of the old policies, groups and assignments are not always tidied up, leaving complex web of policies that target different groups or apps. To gain insights into this mess, I created a PowerShell script to document not just Conditional Access policy settings, but also detail who is impacted by each policy and why.

Continue Reading Performing a Conditional Access Assessment with PowerShell

How to Create and Use Azure AD Cross Tenant Access Policies

Azure AD cross-tenant access settings or policies define how your tenant collaborates with other Microsoft 365 tenants. By default, collaboration using Azure B2B Direct Connect is disabled, so some work is needed to prepare for Teams shared channels. In this article, we look at how to set up cross-tenant policies to enable collaboration to begin using Teams shared channels.

Continue Reading How to Create and Use Azure AD Cross Tenant Access Policies

Why Continuous Access Evaluation (CAE) for Azure AD Matters

Continuous access evaluation (CAE) is a feature that flew under the radar over the past two years. Even so, CAE for Azure Active Directory is an extremely important feature that will not only increase the security posture of your environment but reduce the amount of time before a user loses access to resources when certain critical events happen. This article discusses the need for the feature and how to work with it.

Continue Reading Why Continuous Access Evaluation (CAE) for Azure AD Matters

Secure Access for Remote Workers without Microsoft Defender for Cloud Apps

In the second article of this 2-part series, we describe the alternatives that exist to help secure access for remote workers, exploring the worthy features that don’t require MDCA. The features detailed in this article are available for any tenant with Azure AD Premium licensing and offer a more generic set of controls for tenants where MDCA licensing is not available.

Continue Reading Secure Access for Remote Workers without Microsoft Defender for Cloud Apps

Using Microsoft Defender for Cloud Apps to Secure Access for Remote Workers

There are many ways to provide secure access for remote users working on a home network or personal device (such as VPNs or VDI environments) and they each bring their own levels of complexity. This article explores using Microsoft Defender for Cloud Apps as a solution that is easily deployed, and capable of expanding beyond Office 365 to bring a higher level of control and governance over third-party cloud apps that lack similar native controls.

Continue Reading Using Microsoft Defender for Cloud Apps to Secure Access for Remote Workers

Azure AD App Management Method Policies Harden Application Security Posture

Still in public preview, new application authentication method policies will help Microsoft 365 customers adhere to best practices for managing application credentials, while asserting pressure on ISVs to do the same. Going forward we can expect this to turn into a standard configuration, enforced across many organizations. To address the problem, Microsoft is ready to release a set of features to help. In this article, we introduce you to Azure AD application authentication method policies, one of the features in the set.

Continue Reading Azure AD App Management Method Policies Harden Application Security Posture