May 24, 2021
Tour your identity options when moving to the Zero Trust security model. Our last Essentials episode gave a high-level overview of the Zero Trust security model principles: identity, endpoints, applications, networks, infrastructure, and data.
Join our host, Jeremy Chapman, as he unpacks the foundational layer of the model with identity. As the primary control plane for Zero Trust, it acts as the front door for people, service accounts, and devices as each requests access to resources. Identity is at the core of the Zero Trust concepts of never trust, always verify and grant the appropriate level of access through the principle of least privilege.
Azure AD - easily implement additional protections to verify explicitly
Multi-factor authentication (MFA) - requires an additional authentication factor. Replace passwords with Microsoft Authenticator, Windows Hello, or FIDO2 keys.
Activity reports in the Authentication methods - see who’s capable of MFA and passwordless authentication, how many recent registrations and by type.
Usage - see the distribution of MFA sign-ins and by method, as well as the number of password changes and resets.
Least Privilege access
Conditional Access in Azure AD - uses real-time intelligence at the time of sign-in to assess the risk level, then blocks or grants access.
Built-in Insights and Reporting - expose the impact of enabled policies pre- and post enforcement.
► QUICK LINKS:
00:00 - Introduction
00:37 - Demo in Azure AD
01:47 - Azure AD Application Proxy
02:50 - How to set up multi-factor authentication
04:44 - Activity Reports for admins
05:21 - Least privileged access and conditional access
07:22 - Conditional Access Insights and Reporting
08:16 - Wrap up
► Unfamiliar with Microsoft Mechanics? We are Microsoft’s official video series for IT. You can watch and share valuable content and demos of current and upcoming tech from the people who build it at #Microsoft.
Subscribe to our YouTube: https://www.youtube.com/c/MicrosoftMechanicsSeries?sub_confirmation=1
Join us on the Microsoft Tech Community:
Watch or listen via podcast here: https://microsoftmechanics.libsyn.com/website
► Keep getting this insider knowledge, join us on social:
Follow us on Twitter: https://twitter.com/MSFTMechanics
Follow us on LinkedIn: https://www.linkedin.com/company/microsoft-mechanics/
Follow us on Facebook: https://facebook.com/microsoftmechanics/