Protect ALL Applications with Microsoft Entra
Microsoft Entra
12. Juli 2023 16:00

Protect ALL Applications with Microsoft Entra

von HubSite 365 über John Savill's [MVP]

Principal Cloud Solutions Architect

AdministratorMicrosoft EntraM365 AdminLearning Selection

Using Microsoft Entra to protect all your applications, cloud and on-premises based. We will leverage Microsoft Entra ID (fka Azure AD), SSO

Microsoft Entra aims to provide comprehensive protection for all applications, leveraging on Microsoft Entra ID (formerly Azure AD), SSO, conditional access, identity protection and more. The objective is to use all available signals to ensure the best and safest user experience. The protection covers both cloud and on-premises based applications.

The protection process encompasses user experience, risk signals, and other signal types. Using the conditional Access and attribute-based policy assignment pattern, you can create custom attributes and assign them to applications. Further, you can develop attribute-based policies. The procedure also includes device compliance, protection with risk introduction, and mobile Outlook authentication.

 
  • Introduction
  • Protecting applications
  • User experience and risk signals
  • Other signal types
  • Conditional Access
  • Attribute-based policy assignment pattern
  • Creating and assigning attributes to applications
  • Creating attribute-based policies
  • Device compliance
  • Protection with risk
  • Mobile Outlook Authentication
  • Viewing the sign-in logs
  • Getting started with policy
  • Choosing the right policy
  • Summary

Key links include a Whiteboard from github.com/johnthebrit/RandomStuff

 

Microsoft announced new enhancements to its Microsoft Entra product family, aimed at providing secure access to a variety of digital resources.

  1. Microsoft Entra Internet Access: This is a Secure Web Gateway offering identity-centric protection for internet access, Software-as-a-Service (SaaS), and Microsoft 365 apps and resources. It extends Conditional Access policies to guard against malicious internet traffic. It's currently in preview and promises best-in-class security and visibility, alongside quicker, seamless access to Microsoft 365 apps.

  2. Microsoft Entra Private Access: This solution provides identity-centric Zero Trust Network Access to secure private apps and resources, replacing legacy VPNs. It promises greater security granularity and reduced operational complexity. It's now available in preview.

Both services form Microsoft’s Security Service Edge (SSE) solution, which also includes Microsoft Defender for Cloud Apps. Pricing details will be available at general availability.

  1. Rebranding Azure AD: Microsoft Azure Active Directory (Azure AD) is being renamed Microsoft Entra ID to unify the product family. Existing capabilities, licensing plans, sign-in URLs, and APIs remain unchanged and all current deployments, configurations, and integrations will continue to work as is. The change will be completed by the end of 2023.

Other innovations in the Microsoft Entra portfolio include:

  • Microsoft Entra ID Protection: Improved account protection measures using advanced machine learning for real-time account compromise prevention.
  • Microsoft Entra ID Governance: An identity governance solution to automate the employee identity lifecycle and provide machine learning-based insights about identities and app entitlements.
  • Microsoft Entra External ID: New developer-centric capabilities for creating personalized sign-in and sign-up experiences.
  • Microsoft Entra Verified ID: A solution for verifying an individual's identity.

The technical teams can dive deeper into these updates at the Tech Accelerator event on July 20, 2023. For more information about Microsoft Security solutions, bookmark the Security blog and follow Microsoft Security on LinkedIn and Twitter.

More About Microsoft Entra

Microsoft Entra is a robust solution designed to safeguard all applications, regardless of their hosting environment. It uses advanced features like Single Sign-On (SSO), conditional access, and identity protection – to create a secure bubble around your applications. The Entra ID, formerly known as Azure AD, enhances the security of the user's identity within this environment. Procedures such as viewing sign-in logs help organizations trace any suspicious activities. Microsoft Entra ensures not only protection but also an efficient user experience, thereby presenting an all-encompassing solution.

Learn about Protect ALL Applications with Microsoft Entra

Microsoft Entra is an effective tool for protecting applications, both cloud-based and on-premises. It leverages Microsoft Entra ID (formerly Azure AD), Single Sign-On (SSO), Conditional Access, Identity Protection, and more in order to provide the best security for end users. By using all available signals, Entra can provide protection for all applications. With Entra, users can experience secure authentication, device compliance, risk-based protection, and more.

Microsoft Entra also offers attribute-based policy assignment patterns, custom attributes, and the ability to assign attributes to applications. Additionally, users can view sign-in logs and start with policies that are tailored to their needs.

In conclusion, Microsoft Entra is an effective tool for securing applications, cloud-based or on-premises, by leveraging a variety of security measures such as SSO, Conditional Access, Identity Protection, and more. By using all available signals, it can provide protection for all applications, and users can experience secure authentication, device compliance, risk-based protection, and more.

More links on about Protect ALL Applications with Microsoft Entra

Microsoft Entra - Secure Identities and Access
Secure access to any app or resource from anywhere · Protect and verify every identity · Provide only the access necessary · Simplify the user experience.
Secure access for a connected world—meet Microsoft Entra
May 31, 2022 — Protect access to any app or resource for any user. · Secure and verify every identity across hybrid and multicloud environments. · Discover and ...
Seamless and more secure access to all your apps
Simplify and secure app access for your employees with single sign-on, to any app including on-premises, legacy authentication apps, and cloud and SaaS ...
Microsoft Entra ID Protection | Microsoft Security
Microsoft Entra ID Protection uses advanced machine learning to identify sign-in risks and unusual user behavior to block, challenge, limit, or allow access ...
Microsoft Entra expands into Security Service Edge and ...
21 hours ago — Today, Microsoft Entra protects any identity and secures access to any resource—on-premises, across clouds, and anywhere in between—with a ...
Microsoft Entra documentation
Protect access to all internet, SaaS, and Microsoft 365 apps and resources with an identity-centric Secure Web Gateway. Microsoft Entra Private Access. Secure ...
Secure Access to On-Premises and Legacy Apps
Protect your legacy apps with advanced security capabilities, including Conditional Access, identity protection, and multi-factor authentication. Centralize ...
Conditional Access: Target resources
Jun 27, 2023 — Applying a Conditional Access policy to All cloud apps results in the policy being enforced for all tokens issued to web sites and services.
Azure Active Directory is becoming Microsoft Entra ID
Manage and protect with Azure AD (Microsoft Entra ID) ... Manage all your identities and access to all your applications in a central location, ...
Microsoft Entra Workload ID | Microsoft Security
20 hours ago — Microsoft Entra Workload ID. Help secure identities for apps and services and their access to cloud resources. See plans and pricing.

Keywords

Microsoft Entra, Microsoft Entra ID, Microsoft SSO, Microsoft Conditional Access, Microsoft Identity Protection, Microsoft End-User Experience