Plan and implement Microsoft Entra multifactor authentication
This feature allows for Non-GA's to use MFA without requiring any additional cost.
What are security defaults on?
Bad passwords, good password and, Better password and, Best Passowrdless are examples of.
What are authentication methods?
Policies that are if-then statements: If an assignment is met, then apply these access controls
What is Conditional Access?
Is a service that enables organizations to view the security posture of any account.
What is Identity protection?
Is the authorization system to manage access to Azure resources.
What is Azure role-based access control (Azure RBAC)?
Gives users the ability to change or reset their password, with no administrator or help desk involvement
What is SSPR?
An open specification for passwordless authentication.
What is FIDO2?
Limit the experience of the user/application within a specific cloud application.
What are Conditional Access session controls?
Minimum Entra tier to be able to use Identity protection.
Microsoft Entra ID Premium P2 or M365 E5?
Provide an automatically identity in Microsoft Entra ID for applications to use when connecting to resources
What are Managed Identities?
Minimum Entra tier to be able to use SSPR, MFA and Conditional Access.
What is Entra Premium P1 or M365 E3?
Mobile application that provides an extra layer of security to your online accounts by generating time-based one-time passwords (TOTPs)
What is an Authenticator App?
Provides a means to verify who you are using more than just a username and password.
What is MFA registration policy?
Determines whether a user, application, or group, can do operations on Key Vault secrets, keys, and certificates.
What is a Key Vault Access policy?
Are categories of authentication factors.
What are something you know, possess and are?
Provides a global and custom banned password list to prevent users from creating easy to guess passwords that are weak against dictionary-based attacks.
What is Microsoft Entra password protection?
A cloud-based security solution that helps secure your identity monitoring across your organization including On-Premise. Requires an agent to be installed on DCs
What is Microsoft Defender for Identity?