Azure Sentinel is a cloud SIEM and SOAR. It is therefore used for the supervision of a customer environment, from which it...
Azure Sentinel is a cloud SIEM and SOAR. It is therefore used for the supervision of a customer environment, from which it collects logs, which it then evaluates. Different types of identities generally have different sensitivities in relation to the risk of abuse. The most sensitive identities, such as admin accounts or emergency [...]Lukas Beran
Multi-factor authentication (MFA) is a method to dramatically increase the security of a user identity. For multi-factor authentication, at least two independent authentication methods of the following three are required for successful user authentication: Something I know (typically username and password) Something I have (eg mobile [...]Lukas Beran
Self-Service Password Reset (SSPR) is an Azure AD feature that allows end users to self-reset their password if they forget it. This feature must be enabled by the administrator in Azure AD and the user must register authentication information – phone number, alternate email, mobile app. During a password reset, the user must of [...]Lukas Beran
Azure AD, along with Microsoft Cloud App Security, will take your access to cloud resources to a whole new level. With conditional access in Azure AD, you can determine the conditions under which a user gets access rights (not only) to cloud services and applications. But once you grant access, you can no longer work […]Lukas Beran
Each organization can create policies at its discretion and needs. But there are some policy recommendations that should be developed in all organizations. You can read about conditional access in my previous article. Microsoft internal statistics say that by activating Multi-Factor Authentication (MFA) on user accounts, you eliminate [...]Lukas Beran