Category: Entra
Things and stuff about Entra
-
Conditional Access Boot Camp
Read more: Conditional Access Boot CampConditional Access is one of the best tools in your Microsoft environment for securing access. With it, you can control who, what, where, when, someone or something tries to get…
-
AiTM attack mitigation in M365 – Part 1
Read more: AiTM attack mitigation in M365 – Part 1AiTM attacks have always been that annoying mosquito that just won’t go away. In 2025 and into 2026, that mosquito got a lot bigger. AiTM phishing attacks grew 146% over…
-
Why Scoping Phishing-Resistant MFA to the Admin Portal Isn’t Enough
Read more: Why Scoping Phishing-Resistant MFA to the Admin Portal Isn’t EnoughWoohoo! You implemented phishing-resistant MFA for access to the admin portal. That’s great! But… did you actually improve your situation at all? It depends. Do you still have other MFA…
-
Guest Access in Entra ID: The Tenant’s Junk Drawer
Read more: Guest Access in Entra ID: The Tenant’s Junk DrawerHave you ever looked at your tenant, seen all the guest accounts, and had this reaction? Well, it’s not your fault…. Mostly. There are some default settings within the M365…
-
Token Protection Conditional Access Won’t Save You From AiTM
Read more: Token Protection Conditional Access Won’t Save You From AiTMA while back, Microsoft released a feature called Token Protection in Microsoft Entra ID. It’s a Conditional Access policy designed to help reduce token theft replay attacks, and if you’re…