Discover more from Microsoft Security Sentinel
Conditional Access gap analyzer workbook 🔎
In Entra ID, you can protect access to your resources by configuring Conditional Access policies. As an IT administrator, you want to ensure that your Conditional Access policies work as expected to ensure that your resources are properly protected. With the Conditional Access gap analyzer workbook, you can detect gaps in your Conditional Access implementation.
🔹Highlights user sign-ins that have no Conditional Access policies applied to them.
🔹Allows you to ensure that there are no users, applications, or locations that have been unintentionally excluded from Conditional Access policies.
📌The workbook has four sections:
🔹Users signing in using legacy authentication
🔹Number of sign-ins by applications that aren't impacted by Conditional Access policies
🔹High risk sign-in events bypassing Conditional Access policies
🔹Number of sign-ins by location that weren't affected by Conditional Access policies
📌Best practices: use this workbook to ensure that your tenant is configured to the following Conditional Access best practices:
🔹Block all legacy authentication sign-ins
🔹Apply at least one Conditional Access Policy to every application
🔹Block all high risk sign-ins
🔹Block sign-ins from untrusted locations
Want to learn more? 💡