Full Blog
Windows Server
- Featured
  
  Why didn't high availability clusters prevent the CrowdStrike outage?
  
  Jul 23, 2024 | Hyper-V, HyperConverged, Windows Server |
- Featured
  
  Advanced Troubleshooting Failed Replacement of Physical Disk Storage Spaces Direct S2D / Azure Stack HCI
  
  Apr 10, 2024 | S2D, Windows Server |
- Featured
  
  Troubleshooting Active Directory Account Lockouts with Lockoutstatus.exe
  
  Apr 10, 2024 | Windows Server |
Veeam
Cyber Security
Azure
Step-by-Step
Books
Youtube videos
MVP
- Featured
  
  Embracing the Next Chapter: Leveraging My Three Decades of IT Experience to Drive Organizational Transformation and Nurture Future IT Leaders
  
  Jun 3, 2024 | Cyber Security, MVP, Speaking, Uncategorized |
- Featured
  
  A Deeper Look into ChatGPT 4.0: Harnessing AI for Building Test Environments in Hyper-V
  
  Mar 18, 2023 | Cool Tools, Creative, Hyper-V, Scripts, Windows Server |
- Featured
  
  Pros and Cons of Using ChatGPT 3.5 for PowerShell Scripting in Hyper-V Test Environments
  
  Mar 18, 2023 | Cool Tools, Creative, Hyper-V, Windows Server |
- MVPDays
- Speaking
- Books
- Videos
Authors

Microsoft Defender Secure Score Recommended Action (RA) – Enable Microsoft Entra ID Identity Protection sign-in risk policies

Posted by Steve Labeau | Apr 16, 2024 | Cyber Security | 0 |

Microsoft Defender Secure Score Recommended Action (RA) – Enable Microsoft Entra ID Identity Protection sign-in risk policies

Today we configure the Microsoft Defender Secure Score Recommended Action (RA) “Enable Microsoft Entra ID Identity Protection sign-in risk policies”. This is a strategic action to battle against unauthorized access and identity breaches.

Note: “Recommended action” Remediations as identified by “Microsoft 365 admin center Portal (https://portal.microsoft.com) \ Security \ Secure score \ Recommended actions” in a pristine baseline environment.

Rank Recommended action

8 Enable Microsoft Entra ID Identity Protection sign-in risk policies

Microsoft Security Score

Before Mitigation:

After Mitigation:

Secure Score Improvement: +0.51%

General

Description

Turning on the sign-in risk policy ensures that suspicious sign-ins are challenged for multifactor authentication (MFA).

Implementation status

You have 2159 of 2159 users that don’t have the sign-in risky policy turned on.

User impact

When the policy triggers, the user will need MFA to access the account. If a user hasn’t registered for MFA, they’re blocked from accessing their account. If account access is blocked, an admin would need to recover the account.

Users affected

All of your Microsoft 365 users

Implementation

Prerequisites

You have Microsoft Entra ID Premium P2.

Next steps

To implement this recommendation, you need Microsoft Entra ID Premium P2 licenses. Check what Microsoft Entra ID license you have under “Prerequisites” in Microsoft Secure Score or See your license type under “Basic information” in the Microsoft Entra ID Overview

If you’ve invested in Microsoft Entra ID Premium P2 licenses, you can create a Conditional Access policy from scratch or by using a template. Follow these steps to create a Conditional Access policy from scratch or by using a template
If you’re not using Microsoft Entra ID Premium P2 licenses, we recommend you set this action to “Risk accepted”.

Learn more

None

Related

About The Author

Steve Labeau

With a robust foundation of over thirty years in the Information Technology industry, a specialized degree in Systems Analysis, and the honor of serving as a United States Navy veteran, my career has been a testament to dedication, continuous learning, and leadership. My journey through the realms of technology and service has endowed me with a unique perspective on problem-solving, team collaboration, and driving innovation in fast-paced environments. My tenure in the IT field began after my service in the Navy, where I not only defended my country but also cultivated a strong sense of discipline, adaptability, and teamwork. These virtues have been the cornerstone of my professional life, especially as I transitioned into the civilian workforce, leveraging the analytical skills and technological interest sparked during my service. Holding a degree in Systems Analysis has allowed me to understand and optimize complex IT infrastructures, ensuring they not only meet current demands but are also scalable for future challenges. This educational background, combined with hands-on experience, has enabled me to contribute effectively to every organization I've been part of, from executing detailed system analyses to leading large-scale technology projects. Throughout my career, I have remained at the forefront of the technology evolution, embracing changes and spearheading initiatives that harness the latest in tech to solve real-world problems. My roles have ranged from system design and analysis to strategic IT management, where I've had the privilege of leading talented teams towards achieving collective goals, all while maintaining a laser focus on operational excellence and strategic innovation. Leadership for me has meant more than guiding teams; it has been about mentoring the next generation of IT professionals, sharing the wisdom gained from my experiences, and fostering an environment where curiosity and innovation flourish. I am passionate about not only meeting the technological needs of today but anticipating those of tomorrow, preparing organizations to face the future confidently. As I look forward to the next chapters in my professional journey, I am excited about the opportunities to leverage my extensive experience, technical expertise, and leadership skills to continue making a significant impact in the IT domain. I am committed to not just keeping pace with the digital transformation but being a proactive contributor to it.

Leave a ReplyCancel reply

Translate our Blog

Subscribe to our videos

Subscribe to our Blog

Our Authors

Follow Us

Category

Blog Stats

1,289,958 hits