Conditional Access policies provide many security benefits, from the implementation of MFA in a user-friendly way, to the controls that can limit what data users access or download. However, the process of setting up CA policies is daunting to some at first. This article provides some thought processes and best practices to make this security initiative more manageable.
In many organizations, Microsoft 365 is a significant investment. However, you get so much with Microsoft 365 E3 licenses that many organizations are unaware of, including beneficial features across Productivity, Compliance, Security, and Device management. Kat Greenan shares some of her secrets and the hidden gems that can be found in a Microsoft 365 E3 license.
It's often helpful when security researchers like Guardicore shed light on flaws in Microsoft Exchange - however, the Autodiscover protocol isn't flawed in the way they describe. Even though the issue is hard to replicate, it shouldn't distract from the work you need to do to protect your organization from the underlying reason why people want your credentials.
Microsoft has recently made major strides to improve the capability and resiliency of multi-factor authentication in Azure AD; however, this article highlights the four practical ways in which you can take advantage of MFA in your Microsoft 365 estate, and just turn the darn thing on already!
There are many ways in which you can improve the security of your Exchange Online environment. In this article, Sean McAvinue details the most important steps that admins can immediately implement to align Exchange Online tenants with a good security baseline and posture.
Steve Goodman writes on how you can use Authentication Policies in Exchange Online for blocking Basic Authentication in your Exchange Online tenant.
How the Azure Active Directory baseline security policy enforces multi-factor authentication for privileged administrator accounts in Office 365 and Azure AD.
How to use Azure Active Directory conditional access policies to secure logins by accounts with privileged role permissions, such as enforcing multi-factor authentication for all Global Administrators.
A surprising number of people say they're not using multi-factor authentication in their organization. If you're one of them, I'd like to know why.
How to protect your important Office 365 administrator accounts from compromise by enabling multi-factor authentication (MFA).
