Azure AD Identity Protection – 2nd Part

Hi Friends,

In this section, we will continue from the last article and delve further inside Identity Protection in Azure.

  • Here, I can see the complete dashboard whether any risky user or any risk event is associated. Let’s go ahead and setup policy for Risky signins.

image

  • Here, you can include all users or exclude few. Basically, you would like to exclude them within organization whom you know, that they will attempt risky sign-in.

image

  • Now, let’s say you are not expecting someone from bazil or ukraine to login into your application. Therefore, in that case, you can select below risk level

image

  • Next, we will select the control option, like what we want to do, if Machine Learning algorithm, detected something like that. Either, we can block the user, or we can allow based on multi factor algorithm.

image

  • Next, we are going to run the estimated impact like this:

image

  • Since, we have only handful users and that too created now only, hence no impact. But, let’s say if you have 1000 or more than that users, then identity protection becomes significant. Finally, we will enforce policy and click save.

image

  • Next comes, sign-in risky policy setup. This is also pretty much like the previous one

image

  • Similarly, then we have multi factor authentication setup like shown below.

image

Once these things setup, we can certainly see any event on the overview page, or we can pin this to dashboard as well. Thanks for joining me.

Thanks,
Rahul Sahay
Happy Coding