Uncategorized on Ru Campbell MVP

Stop Making These Conditional Access Mistakes

Tue, 16 May 2023 09:14:28 +0000

Conditional Access is the most important security feature you will configure in Azure AD. You need to get this right, or most other things don’t even matter.

Compared to on-premises AD, which requires line of sight to a domain infrastructure often limited to physical or VPN access, Azure AD is wide open by default. Users can authenticate from anywhere, on any device.

How Conditional Access Assignments and Access Controls Work

Sun, 21 Mar 2021 19:47:39 +0000

When you authenticate with Azure AD, Conditional Access policies let you apply if-then rules for licensees of Azure AD Premium P1 or P2.

The conditions within Conditional Access (CA) are called assignments, but you may also see them referred to as signals, session details, or criteria. They make up the if part of if-then, and the then part is referred to as the access control or enforcement.

For example:

if the authentication attempt is for an administrative role (assignments / signals / session details / criteria)
then enforce multi-factor authentication (MFA) (access control / enforcements)

Assignments are broken down into

Connect Microsoft Store for Business to Intune in Microsoft Endpoint Manager

Fri, 29 May 2020 19:32:29 +0000

When you link up the Microsoft Store for Business to Intune, you can centrally deploy store apps, automatically keep them up to date, and access volume-purchases.

1. In MEM, browse to Tenant administration > Connectors and tokens > Microsoft Store for Business.

2. Set the state to Enable and follow the link to Open the business store 3.