https://campbell.scot/tags/identity-protection/ Recent content in Identity-Protection on Ru Campbell MVP Hugo en-gb Wed, 07 Feb 2024 17:54:59 +0000 https://campbell.scot/entra-id-protection-common-microsoft-365-security-mistakes-series/ Wed, 07 Feb 2024 17:54:59 +0000 https://campbell.scot/entra-id-protection-common-microsoft-365-security-mistakes-series/ <p>Signals from across Microsoft&rsquo;s services and ecosystems inform Entra ID Protection to detect risk. The risk detections can alert administrators or, better still, combine with other Entra and Defender XDR capabilities to perform remediation and prevention. The most obvious example of this may be preventing a risky sign in. Contrary to popular understanding, not all of Entra ID Protection&rsquo;s detections are limited to the Entra ID P2 license: the nonpremium risks listed <a href="https://learn.microsoft.com/en-us/entra/id-protection/concept-identity-protection-risks#sign-in-risk-detections">here</a> don&rsquo;t require P2.</p> https://campbell.scot/conditional-access-common-microsoft-365-security-mistakes-series/ Thu, 05 Oct 2023 21:11:27 +0000 https://campbell.scot/conditional-access-common-microsoft-365-security-mistakes-series/ <p>Conditional Access (CA) is front and center of any attempt to secure Microsoft 365. If you&rsquo;ve spent any time securing your tenant and Entra resources, you&rsquo;ll know what Conditional Access is by now, so we&rsquo;ll assume at least a level 200 understanding, skip the introduction, and instead dive into the most common mistakes I see when helping folks out with it.</p> <p>These aren&rsquo;t listed in any particular order, and the devil&rsquo;s in the details, so make sure you read the full post instead of just skimming the bullet points! There are also <em>way</em> more than five mistakes you can make with Conditional Access, but let&rsquo;s start with these.</p>