In a significant effort to strengthen cybersecurity, Microsoft announced automatic deployment of multi-factor authentication (MFA)-related conditional access policies in Entra ID, marking a pivotal step in the company’s Secure Future Initiative. .
This initiative aims to strengthen customers’ security measures in preparation for the growing number of cyber threats.
This announcement, made during Microsoft Ignite in November 2023, demonstrates Microsoft’s commitment to evolving security protocols for its users, having since implemented report-only policies for over 500,000 tenants. .
Enhance security with multi-factor authentication
These newly introduced policies focus on multi-factor authentication (MFA), a critical security measure designed to protect against unauthorized access.
MFA requires users to provide two or more verification factors to access resources, greatly reducing the risk of compromise.
Microsoft’s approach is aimed at various user groups, including Microsoft Management Portal administrators and users who have per-user MFA enabled across Entra ID P1 and P2 tenants.
Microsoft recently announced that it will implement Microsoft-managed policies to automatically deploy multi-factor authentication (MFA)-related Conditional Access policies to customer tenants.
Customers will have enhanced security measures and better control over the authentication process.
Recognizing the increased risk associated with administrator accounts, Microsoft has mandated MFA for 14 highly privileged administrator roles.
This measure protects privileged administrative functions by ensuring that only authenticated users can access the Microsoft Management Portal.
This policy applies to Entra ID P1 and P2 tenants that do not have security defaults enabled and provides an additional layer of security for critical roles.
Streamline MFA for your users
Microsoft’s Conditional Access policies feature integration with user group and application targeting, risk and device-based conditions, and authentication strength to provide users with a sophisticated management experience with per-user MFA.
This approach increases security, minimizes end-user friction, and facilitates a seamless transition to Conditional Access without disrupting the user experience.
This policy is specifically targeted to licensed users in Entra ID P1 and P2 tenants with less than 500 users with MFA enabled/enforced per user.
Another important aspect of Microsoft’s security enhancements is its policy against risky sign-ins. This is aimed at achieving the optimal level of risk assessment in the NIST Zero Trust Maturity Model.
This policy is triggered by high-risk sign-in attempts that indicate a potential brute force attack, password spray attack, or token replay attack.
Users will be asked to self-heal with MFA and re-authenticate to their Entra ID. This effectively resets compromised sessions and disrupts active attacks in real-time.
Conditional Access policies managed by Microsoft
Microsoft has created a Microsoft-managed Conditional Access policy for all targeted tenants in reporting-only mode.
These policies serve as recommendations that organizations can adapt and customize according to their specific needs.
We recommend that administrators review and strengthen these policies by excluding emergency and service accounts. When you’re ready, you can activate your policy.
This flexibility allows for customized security measures tailored to your organization’s requirements.
Microsoft encourages organizations to take proactive steps by enabling and customizing Microsoft-managed Conditional Access policies.
By implementing these MFA policies, organizations can significantly strengthen their defenses against evolving security threats.
For more information about securing your resources, we provide comprehensive documentation on policies maintained by Microsoft.
Microsoft’s automated deployment of conditional access policies in Entra ID represents a strategic effort to strengthen cybersecurity posture for customers.
By implementing multi-factor authentication and deploying Microsoft-managed policies, Microsoft is leading the way in protecting against the growing threat of cyberattacks and ensuring a safe and resilient digital environment for users around the world.
Block malware such as Trojans, ransomware, spyware, rootkits, worms, and zero-day exploits. Perimeter81 Malware Protection. All of these are extremely harmful and can cause havoc and damage your network.
Stay up to date with cybersecurity news, whitepapers, and infographics. Follow us on LinkedIn. twitter.