Blog Layout

Who's Accessing Your Network?

Shawn Akins • Mar 05, 2021

 

In a mobile-first, cloud-first world, your users access your organization's resources from anywhere using a variety of devices and apps. As a result, focusing on who can access a resource is no longer enough. You also need to consider where the user is, the device being used, the resource being accessed, and more. Azure Active Directory (Azure AD) Conditional Access analyses signals such as user, device, and location to automate decisions and enforce organizational access policies for resource. You can use Conditional Access policies to apply access controls like Multi-Factor Authentication (MFA). Conditional Access policies allow you to prompt users for MFA when needed for security, and stay out of users’ way when not needed.

In a recent project to improve user identity security, one of our Azure Security Experts utilized Conditional Access to create policies.


BLOCK LEGACY AUTHENTICATION POLICY:

One of these policies was to block legacy authentication. Legacy authentication does not support MFA. This is because legacy authentication protocols like POP, SMTP, IMAP, and MAPI can't enforce MFA, making them preferred entry points for adversaries attacking your organization. The numbers on legacy authentication from an analysis of Azure Active Directory (Azure AD) traffic are stark:

  • More than 99 percent of password spray attacks use legacy authentication protocols
  • More than 97 percent of credential stuffing attacks use legacy authentication
  • Azure AD accounts in organizations that have disabled legacy authentication experience 67 percent fewer compromises than those where legacy authentication is enabled


BLOCK ACCESS BY COUNTRIES

With the location condition in Conditional Access, you can control access to your cloud apps based on the network location of a user. The location condition is commonly used to block access from countries/regions where your organization knows traffic should not come from.


REDUCE MFA FOR KNOWN LOCATIONS

One of the biggest complaints about MFA is the additional step required by the user to access resources. Utilizing conditional access policies, you can avoid MFA for known locations like inside your locations or while connected via your wireless network.


REQUIRE MFA FOR ADMINISTRATORS

Administrator accounts are highly targeted by attackers. Once compromised, these accounts provide the “keys to the kingdom” for these attackers. Best practice is to require MFA for all administrator accounts to reduce the risk of these accounts being compromised.

Microsoft’s Conditional Access is a powerful solution to secure user identities and much more. Conditional access can be integrated with Single Sign On (SSO) to 3rd party applications to ensure that only valid users are allowed access to data and applications. Conditional Access is included in Microsoft Azure Active Directory (AAD) Premium P1. AAD P1 is included in Microsoft 365 F1/F3/E3/E5, Microsoft 365 Business Premium (300 users or less), EMS E3/E5 or as a stand alone license. Reach out to a Microsoft CSP licensing expert at Akins IT for assistance with any licensing questions. Additional features like Privileged Identity management and Risk-Based Conditional Access are included in Microsoft Azure Active Directory Premium P2.

 

Contact Us
CONTACT US TO LEARN MORE ABOUT THIS TOPIC OR TO SCHEDULE A CALL

Navigating the Future of Work with Microsoft 365 Copilot Prompts

By Shawn Akins 15 Apr, 2024
In the ever-evolving landscape of the digital workplace, Microsoft 365 Copilot stands as a beacon of innovation, guiding users through the complexities of their daily tasks with ease and efficiency. As we embrace this new era of work, understanding the capabilities and utilization of Copilot prompts becomes essential. What are Copilot Prompts? Copilot prompts are intelligent cues that empower users to harness the full potential of Microsoft 365. They are designed to understand the context of your work and provide suggestions that are not only relevant but also tailored to enhance productivity.  The Power of Contextual Understanding At the heart of Copilot prompts is the advanced AI that meticulously analyzes the content you're working on. Whether it's an email, a document, or a spreadsheet, Copilot grasps the essence of your task and offers prompts that propel you forward. Streamlining Collaboration Collaboration is the cornerstone of modern work, and Copilot prompts are the perfect ally. They facilitate seamless communication by suggesting replies in emails, aiding in the co-authoring of documents, and ensuring that your team stays on the same page. Enhancing Creativity Beyond the realms of productivity, Copilot prompts also serve as a muse for your creativity. They can assist in drafting compelling narratives, generating ideas, or even crafting personalized messages that resonate with your audience. Learning and Growing with Copilot As you interact with Copilot prompts, they learn and adapt to your unique style and preferences. This continuous learning process ensures that the assistance you receive is always improving, making your experience with Microsoft 365 increasingly intuitive. Conclusion Microsoft 365 Copilot prompts are more than just a feature; they are your partner in navigating the future of work. By understanding their functionality and integrating them into your workflow, you can unlock new levels of efficiency, collaboration, and creativity.

Case Study: Rapid Response to Security Breach

By Shawn Akins 15 Apr, 2024
Sky at Chandler Airpark

Case Study: Management Support Server Upgrade

By Leislee Mamba 18 Jan, 2024
Akins IT assists Management Support in migrating their physical server infrastructure to new hardware and enhancing their backup process for improved disaster recovery.
More Posts
Share by: