As you may know, it’s possible for your users to sign-in to SaaS based applications using their Azure AD account. By doing this, a Single Sign On (SSO) experience is created for the user. Before this SSO for an SaaS based application is possible though, the user needs to accept (a) permission request(s) from the…
Category: AzureAD
Microsoft deprecates Conditional Access baseline policies in favour of Security Defaults, here is what you need to know and do
Last week, Microsoft announced that the Azure AD conditional access baseline policies will not make it out of their current preview status. The functionality of the baseline policies will be made in available in a new feature called “Security Defaults”, Microsoft will remove the baseline policies on February 29th, so if you are using them…
Report-only mode, and some more handy reporting functionality for Conditional Access and Azure AD
During its annual Microsoft Ignite 2019 conference this week, Microsoft announced a new feature for Conditional Access called Report-Only mode in preview. So, what is Report-only mode? Report-Only mode is a new option within a Conditional Access policy. Besides the option to turn the conditional access policy on or off, the option to Report-only has…
Extending Conditional Access to Microsoft Cloud App Security using Conditional Access App Control
In my blog article series on Conditional Access Demystied I mentioned that Conditional Access can be used to route sessions toward Microsoft Cloud App Security (MCAS). In this article I will go into more detail on what MCAS is, and how to setup Conditional Access App Control. Disclaimer: This article discusses the full option MCAS…
Ask yourself if you still really need ADFS
In Q1 2017 Microsoft released the Pass Through Authentication (PTA) functionality as part of Azure AD connect. With the release of Azure Active Directory (Azure AD) Pass-through Authentication allowed for your users to sign in to both on-premises and cloud-based applications using the same passwords without the need to implement a Active Directory Federation Services…
Conditional Access demystified, part 8: Resources and further references
Now available: May 2020 update of the Conditional Access Demystified Whitepaper, Workflow cheat sheet, Implementation workflow and Documentation spreadsheet This article is the last part of a series, for which the following articles are available: Conditional Access demystified, part 1: IntroductionConditional Access demystified, part 2: What is Conditional Access?Conditional Access demystified, part 3: How does…
Conditional Access demystified, part 7: Modifying Conditional Access to suit your special needs
Now available: May 2020 update of the Conditional Access Demystified Whitepaper, Workflow cheat sheet, Implementation workflow and Documentation spreadsheet This article is part 7 of a series, for which the following articles are available: Conditional Access demystified, part 1: IntroductionConditional Access demystified, part 2: What is Conditional Access?Conditional Access demystified, part 3: How does Conditional…
Conditional Access demystified, part 6: Troubleshooting Conditional Access
Now available: May 2020 update of the Conditional Access Demystified Whitepaper, Workflow cheat sheet, Implementation workflow and Documentation spreadsheet This article is part 6 of a series, for which the following articles are available: Conditional Access demystified, part 1: IntroductionConditional Access demystified, part 2: What is Conditional Access?Conditional Access demystified, part 3: How does Conditional…
Conditional Access demystified, part 5: Implementing Conditional Access
Now available: May 2020 update of the Conditional Access Demystified Whitepaper, Workflow cheat sheet, Implementation workflow and Documentation spreadsheet This article is part 5 of a series, for which the following articles are available: Conditional Access demystified, part 1: IntroductionConditional Access demystified, part 2: What is Conditional Access?Conditional Access demystified, part 3: How does Conditional…
Conditional Access demystified, part 4: Designing a Conditional Access strategy
Now available: May 2020 update of the Conditional Access Demystified Whitepaper, Workflow cheat sheet, Implementation workflow and Documentation spreadsheet This article is part 4 of a series, for which the following articles are available: Conditional Access demystified, part 1: IntroductionConditional Access demystified, part 2: What is Conditional Access?Conditional Access demystified, part 3: How does Conditional…
Conditional Access demystified, part 3: How does Conditional Access work?
Now available: May 2020 update of the Conditional Access Demystified Whitepaper, Workflow cheat sheet, Implementation workflow and Documentation spreadsheet This article is part 3 of a series, for which the following articles are available: Conditional Access demystified, part 1: IntroductionConditional Access demystified, part 2: What is Conditional Access?Conditional Access demystified, part 4: Designing a Conditional…
Conditional Access demystified, part 2: What is Conditional Access?
Now available: May 2020 update of the Conditional Access Demystified Whitepaper, Workflow cheat sheet, Implementation workflow and Documentation spreadsheet This article is part 2 of a series, for which the following articles are available: Conditional Access demystified, part 1: IntroductionConditional Access demystified, part 3: How does Conditional Access work?Conditional Access demystified, part 4: Designing a…
Conditional Access demystified, part 1: Introduction
Now available: May 2020 update of the Conditional Access Demystified Whitepaper, Workflow cheat sheet, Implementation workflow and Documentation spreadsheet In July 2016 Microsoft made Conditional Access generally available as a feature of Azure Active Directory (AzureAD). Since that time I had a love and hate relationship with this functionality of Azure AD. Mainly because it’s…