Microsoft Security Sentinel

Microsoft Security Sentinel

Share this post

Microsoft Security Sentinel
Microsoft Security Sentinel
🔒Protected Actions in Azure AD: level up your Conditional Access policies🔒
Copy link
Facebook
Email
Notes
More

🔒Protected Actions in Azure AD: level up your Conditional Access policies🔒

José Lázaro
May 25, 2023

Share this post

Microsoft Security Sentinel
Microsoft Security Sentinel
🔒Protected Actions in Azure AD: level up your Conditional Access policies🔒
Copy link
Facebook
Email
Notes
More
Share

The digital world is constantly under threat from sophisticated cyber-attacks. As the guardians of this realm, it's necessary that we remain a step ahead.

To enhance your organisation’s Azure AD presents this fantastic feature, Protected Actions.

📌What are Protected Actions?

✔️Protected actions in Azure Active Directory (Azure AD) are permissions that have been assigned Conditional Access policies. When a user attempts to perform a protected action, they must first satisfy the Conditional Access policies assigned to the required permissions. For example, to allow administrators to update Conditional Access policies, you can require that they first satisfy the Phishing-resistant MFA policy.

📌Why Use Protected Actions?

✔️They provide an additional layer of security.

✔️They are flexible, applied only when required.

✔️They are independent of the user's role or how they were granted permission.

📌The Power of Protected Actions

✔️We recommend using multi-factor authentication on all accounts, especially accounts with privileged roles. Protected actions can be used to require additional security. Here are some common stronger Conditional Access policies:

🔹Stronger MFA authentication strengths, such as Passwordless MFA or Phishing-resistant MFA.

🔹Privileged access workstations, by using Conditional Access policy device filters.

🔹Shorter session timeouts, by using Conditional Access sign-in frequency session controls.

📌What permissions can be used with protected actions?

✔️For this preview, Conditional Access policies can be applied to limited set of permissions. You can use protected actions in the following areas:

🔹Conditional Access policy management

🔹Custom rules that define network locations

🔹Protected action management

📖Want to lean more?

🔗MS Docs: https://learn.microsoft.com/en-us/azure/active-directory/roles/protected-actions-overview

#azure #cybersecurity #security #network #azuread #entra #microsoftentra #conditionalaccess #digitaltransformation #microsoft #microsoftsecurity #microsoft365 #siem #xdr #soc #MSPartnerUK

Thanks for reading Microsoft Security Sentinel! Subscribe for free to receive new posts and support my work.

Share this post

Microsoft Security Sentinel
Microsoft Security Sentinel
🔒Protected Actions in Azure AD: level up your Conditional Access policies🔒
Copy link
Facebook
Email
Notes
More
Share

Discussion about this post

No posts

Ready for more?

© 2025 José Lázaro Pinos
Privacy ∙ Terms ∙ Collection notice
Start WritingGet the app
Substack is the home for great culture

Share

Copy link
Facebook
Email
Notes
More