O365Con18 - Exploring Conditional Access to content stored in Office 365 - Paul Hunt

•

0 likes•101 views

This document discusses conditional access and access management in Microsoft 365. It covers authentication versus authorization, roles-based access control, conditional access policies, Azure AD Privileged Identity Management, and Privileged Access Management in Office 365. It provides information on the capabilities of different license tiers and describes how to configure Privileged Access Management in Office 365.

Technology

ExploringConditional
Access to content storedin
Office365

Access Layers in Microsoft 365
Encryption
RBAC
Conditional Access
Azure AD PIM
PAM in Office 365
Prevent unauthorized
illegitimateaccess
Govern
legitimate
access
Role & risk based
Standing access
(Permissions)
JIT & JEA
With Approval
(Elevationof Privilege)

RBAC & Conditional Access
RBAC
Conditional Access
Role & risk based
Standing access
(Permissions)

When are they accessing?
What do we mean by conditional access?

What CAN’T be achieved with ADFS?
@tenant.onmicrosoft.com

BRK3101 – Securing your SharePoint and OneDrive
content with access policies and labels – Sesha Mani
Watch the Ignite Session for Demos

PIM & PAM
Azure AD PIM
PAM in Office 365
JIT & JEA
With Approval
(Elevationof Privilege)

Comparing PIM/PAM
Requires EM+S E5 (Or Azure AD P2)
Permits Role based control
Available for 32 Admin Roles
Available for Azure Resources
Ignite – BRK3248
Person Focussed
GA Announced 25/09 @ Ignite
Requires Office 365 E5 (or Advanced
Compliance Sku)
Permits TASK/ROLE based control
Only available for EXCHANGE
initially.
Ignite – BRK3222
Task Focussed
Azure PIM Office 365 PAM

Useful Resources
Access Control Policies
Access Control Policies
AD Risk Events
https://aka.ms/mfasetup
Docs
Docs

O365Con18 - Exploring Conditional Access to content stored in Office 365 - Paul Hunt

A presentation at a technology meetup. Roy Kim will walk through various access scenarios and capabilities using Azure AD services and features to access SharePoint 2013/2016 server. This will include a comparison between AD Connect + Azure Application Proxy to publish an internal SharePoint application and 3rd Party Auth0 to assist in federating Azure AD and SSO integration. And also the recently supported Azure AD SAML 1.1 Token. Roy will go through a demo, its architecture, and commentary of pros and cons. At the end you will have a good understanding of the technology capabilities to determine supporting access and user management scenarios.

ECS19 - Bram De Jager - Design a secure collaboration solution with Azure In...

European Collaboration Summit

O365Con18 - A Lap Around Monitoring, Auditing and Securing Microsoft Azure - ...

NCCOMMS

Microsoft Reactor Toronto 5/5/2020 | Azure Kubernetes In Action - Running and...

Roy Kim

Azure Kubernetes Service (AKS) is a managed container orchestration service. With Kubernetes continuing to grow in popularity, many developers and IT engineers are curious to get started. Roy will demonstrate hosted microservices applications and the Istio service mesh. Along with how to manage your cluster with the Kubernetes Dashboard, Prometheus, Grafana and Azure Monitor. You will see a practical overview how all these pieces fit together. www.roykim.ca Twitter: @RoyKimYYZ Github: https://github.com/RoyKimYYZ

O365Con18 - Deep Dive into Microsoft 365 - Jussi Roine

NCCOMMS

O365Con18 - Red Team vs Blue Team - Sasha Kranjac & Mustafa Toroman

NCCOMMS

Securing and maintaining a trustworthy Office 365 and Microsoft Azure deployment is not an easy task. In this session we'll take a look into how you can secure and control your cloud-based servers and services, data and users using Azure Active Directory, Azure Security Center, Privileged Identity Management and Advanced Security Management. In addition we’ll also take a look at how Operations Management Suite and Microsoft Advanced Threat Analytics can be used to provide better overall security for on-premises and hybrid deployments.

Azure AD with Office 365 and Beyond!

Ravikumar Sathyamurthy

Azure Active Directory

Sovelto

Azure AD Presentation - @ BITPro - Ajay

Anoop Nair

O365Con18 - Azure AD Connect Inside and Out - Sander Berkouwer

NCCOMMS

[Sy] How to Develop Your Office 365 Information Governance Strategy in 4 Steps

European Collaboration Summit

[Dux Raymond Sy] So you’ve made the decision to move to Office 365 – now how do you ensure your critical business information is secure in the cloud? In this interactive session, you will learn how to reduce risk and ensure your users do the right thing by employing industry best practices for information governance, risk, and compliance. We’ll also explain how recent enhancements from Microsoft – including Office 365 Security & Compliance Center and Azure Information Protection – as well as other related technologies can help. This session will empower you to implement proven tactics to ensure your Microsoft Cloud investment meets business needs while protecting your most sensitive data.

O365Con18 - Running SharePoint on Azure Tips - Jared Shockley

NCCOMMS

Certifications for Azure Developers

Krunal Trivedi

O365Con19 - A Life Without Passwords Dream or Reality - Sander Berkouwer

NCCOMMS

O365Con18 - Azure Active Directory - Sasha Kranjac & Mustafa Toroman

NCCOMMS

Understanding Azure AD

New Horizons Ireland

Azure Active Directory

Thurupathan Vijayakumar

Azure Active Directory (AD) is a directory as a service on Microsoft Azure. More than the cloud identity Azure AD provides a platform to build cloud applications with multi tenancy support. A flexible authentication systems which enables developers to leverage the cloud identity model and develop applications at ease. The session will walk you through on the basics of Azure AD and how to develop .NET applications using Azure AD.

ECS19 - Nicki Borell - Microsoft Cybersecurity Reference Architecture

European Collaboration Summit

Windows Azure Active DirectoryPavel Revenkov

Azure Active Directory - An Introduction

Venkatesh Narayanan

EWUG - Azure AD Pass-through Authentication and Seamless Single Sign-On

Peter Selch Dahl

Cloud Based Rights Management with Azure RMS

Morgan Simonsen

Get your Hybrid Identity in 4 steps with Azure AD ConnectRonny de Jong

Cloud Reference Architecture - Part 1 Foundation

Ammar Hasayen

This presentation covers a practical approach for adopting and migrating on premises systems and applications to the Public Cloud. Based on a clear migration master plan, it helps companies and enterprises to be prepared for Cloud computing, what and how to successfully migrate or deploy systems on Cloud, preparing your IT organization with a sound Cloud Governance model, Security in the Cloud and how to reach the benefits of Cloud computing by automation and optimizing your cost and workloads.

Windows azure active directory

Krunal Trivedi

Exploring conditional access to content stored in Office 365

Paul Hunt

Exploring conditional access to content stored in office 365 spsce

Paul Hunt

What's hot

SPSNL17 - Securing Office 365 and Microsoft Azure like a rock star (or groupi...

DIWUG

Azure AD with Office 365 and Beyond!

Ravikumar Sathyamurthy

Azure Active Directory

Sovelto

Azure AD Presentation - @ BITPro - Ajay

Anoop Nair

O365Con18 - Azure AD Connect Inside and Out - Sander Berkouwer

NCCOMMS

[Sy] How to Develop Your Office 365 Information Governance Strategy in 4 Steps

European Collaboration Summit

O365Con18 - Running SharePoint on Azure Tips - Jared Shockley

NCCOMMS

Certifications for Azure Developers

Krunal Trivedi

O365Con19 - A Life Without Passwords Dream or Reality - Sander Berkouwer

NCCOMMS

O365Con18 - Azure Active Directory - Sasha Kranjac & Mustafa Toroman

NCCOMMS

Understanding Azure AD

New Horizons Ireland

Azure Active Directory

Thurupathan Vijayakumar

ECS19 - Nicki Borell - Microsoft Cybersecurity Reference Architecture

European Collaboration Summit

Windows Azure Active DirectoryPavel Revenkov

Azure Active Directory - An Introduction

Venkatesh Narayanan

EWUG - Azure AD Pass-through Authentication and Seamless Single Sign-On

Peter Selch Dahl

Cloud Based Rights Management with Azure RMS

Morgan Simonsen

Get your Hybrid Identity in 4 steps with Azure AD ConnectRonny de Jong

Cloud Reference Architecture - Part 1 Foundation

Ammar Hasayen

Windows azure active directory

Krunal Trivedi

What's hot (20)

SPSNL17 - Securing Office 365 and Microsoft Azure like a rock star (or groupi...

Azure AD with Office 365 and Beyond!

Azure Active Directory

Azure AD Presentation - @ BITPro - Ajay

O365Con18 - Azure AD Connect Inside and Out - Sander Berkouwer

[Sy] How to Develop Your Office 365 Information Governance Strategy in 4 Steps

O365Con18 - Running SharePoint on Azure Tips - Jared Shockley

Certifications for Azure Developers

O365Con19 - A Life Without Passwords Dream or Reality - Sander Berkouwer

O365Con18 - Azure Active Directory - Sasha Kranjac & Mustafa Toroman

Understanding Azure AD

Azure Active Directory

ECS19 - Nicki Borell - Microsoft Cybersecurity Reference Architecture

Windows Azure Active Directory

Azure Active Directory - An Introduction

EWUG - Azure AD Pass-through Authentication and Seamless Single Sign-On

Cloud Based Rights Management with Azure RMS

Get your Hybrid Identity in 4 steps with Azure AD Connect

Cloud Reference Architecture - Part 1 Foundation

Windows azure active directory

Similar to O365Con18 - Exploring Conditional Access to content stored in Office 365 - Paul Hunt

Exploring conditional access to content stored in Office 365

Paul Hunt

Exploring conditional access to content stored in office 365 spsce

Paul Hunt

Exploring conditional access to content stored in Office 365 - SPS Helsinki

Paul Hunt

SpUnite17 Exploring Identity Management Options in Office 365

NCCOMMS

Securing Governing and Protecting Your Office 365 Investments

Chris Bortlik

Microsoft continues to invest in services and capabilities to help you protect, detect, and respond to a variety of emerging security and compliance needs for Office 365. Come to this session for an interactive scenario based whiteboard and demonstration of how you can implement comprehensive controls based on a variety of dimensions across the identity of the user; their location and device; and the application, service, and content they are accessing.

What small businesses need to know about Azure AD premium

Miguel Tena

December 2019 Microsoft 365 Need to Know Webinar

Robert Crane

May 2020 Microsoft 365 Need to Know Webinar

Robert Crane

Microsoft Cloud Services Licensing

FlorisKlaver1

Preparing for Microsoft 365 Copilot - Best Practices for Governance and Data ...

Nikki Chapple

Microsoft 365 Copilot is a new technology that uses generative AI to help users create content, code, and data insights from within your Microsoft 365 Apps such as Word, Excel, PowerPoint, Outlook, Teams and Loop. It can boost productivity, creativity, and skills, but it also poses some challenges for governance and data security. To prepare for Microsoft 365 Copilot, users need to follow some best practices, such as: - Assessing their technical , and data security readiness. - Understand the importance of “Just enough access” -How to build your data security and governance maturity by setting up data security, governance and access controls at the tenant level, the container (Team or Group) level and at the individual user level. By following these best practices, users can ensure that they get the most out of Microsoft 365 Copilot while protecting their data and reputation.

Solving the security & compliance puzzle for Office 365 and Microsoft 365

Albert Hoitingh

Securing, Governing, and Protecting Your Office 365 Investments

Chris Bortlik

How to secure and audit O365(Azure AD) by K.Suttipan (MVP) & K.Wisanu // Azur...

Kumton Suttiraksiri

May 2018 Office 365 Need to Know Webinar

Robert Crane

Hitchhiker's Guide to Azure AD - SPS St Louis 2018

Max Fritz

Introduction to basic governance in Azure - #GABDK

Peter Selch Dahl

Rencore Webinar: Securing Office 365 and Microsoft Azure like a Rockstar

Rencore

Securing and maintaining a trustworthy Office 365 and Microsoft Azure deployment is not an easy task. Join Jussi in his session where we’ll take a look into how you can secure and control your cloud-based servers and services, data and users using Azure Active Directory, Azure Security Center, Privileged Identity Management, and Advanced Security Management. In addition, we’ll also take a look at how Operations Management Suite and Microsoft Advanced Threat Analytics can be used to provide better overall security for on-premises and hybrid deployments.

CIAOPS Need to Know Office 365 Webinar - March 2018

Robert Crane

Rencore Webinar: Advanced Security Management within Office 365 with Liam Cleary

Rencore

Many organizations are still deciding whether to move to the cloud or not. A core reason for most organizational hesitance comes down to Security. We are not just talking end user security as such but more high-level security and control. Microsoft has addressed this by adding various features to Office 365, making it a more compelling proposition, and ensuring that Security is now a core part of all platforms and products they build. In this webinar, guest soeaker Liam Cleary takes a closer look at one such feature: Advanced Security Management, available either within your current license or as an add-on. This tool helps you as an organization to not only control data and security but also review what is actually happening with your users and their accounts. Advanced Security Management is broken into three main components, Threat Management, Enhanced Control and Discovery and Insights. These will allow you to better protect your clouds investments and ensure that everything is secure and that you can be more proactive. Take a look at the Advanced Security Management tool, and walk through how you can take advantage of it to help in making the decision to move to the cloud, secure your current solutions and also control shadow IT.

Microsoft Cloud options

Robert Crane

Similar to O365Con18 - Exploring Conditional Access to content stored in Office 365 - Paul Hunt (20)

Exploring conditional access to content stored in Office 365

Exploring conditional access to content stored in office 365 spsce

Exploring conditional access to content stored in Office 365 - SPS Helsinki

SpUnite17 Exploring Identity Management Options in Office 365

Securing Governing and Protecting Your Office 365 Investments

What small businesses need to know about Azure AD premium

December 2019 Microsoft 365 Need to Know Webinar

May 2020 Microsoft 365 Need to Know Webinar

Microsoft Cloud Services Licensing

Preparing for Microsoft 365 Copilot - Best Practices for Governance and Data ...

Solving the security & compliance puzzle for Office 365 and Microsoft 365

Securing, Governing, and Protecting Your Office 365 Investments

How to secure and audit O365(Azure AD) by K.Suttipan (MVP) & K.Wisanu // Azur...

May 2018 Office 365 Need to Know Webinar

Hitchhiker's Guide to Azure AD - SPS St Louis 2018

Introduction to basic governance in Azure - #GABDK

Rencore Webinar: Securing Office 365 and Microsoft Azure like a Rockstar

CIAOPS Need to Know Office 365 Webinar - March 2018

Rencore Webinar: Advanced Security Management within Office 365 with Liam Cleary

Microsoft Cloud options

Recently uploaded

Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf

91mobiles

AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...

Product School

Connector Corner: Automate dynamic content and events by pushing a button

DianaGray10

Here is something new! In our next Connector Corner webinar, we will demonstrate how you can use a single workflow to: Create a campaign using Mailchimp with merge tags/fields Send an interactive Slack channel message (using buttons) Have the message received by managers and peers along with a test email for review But there’s more: In a second workflow supporting the same use case, you’ll see: Your campaign sent to target colleagues for approval If the “Approve” button is clicked, a Jira/Zendesk ticket is created for the marketing design team But—if the “Reject” button is pushed, colleagues will be alerted via Slack message Join us to learn more about this new, human-in-the-loop capability, brought to you by Integration Service connectors. And... Speakers: Akshay Agnihotri, Product Manager Charlie Greenberg, Host

FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf

FIDO Alliance

Epistemic Interaction - tuning interfaces to provide information for AI support

Alan Dix

Paper presented at SYNERGY workshop at AVI 2024, Genoa, Italy. 3rd June 2024 https://alandix.com/academic/papers/synergy2024-epistemic/ As machine learning integrates deeper into human-computer interactions, the concept of epistemic interaction emerges, aiming to refine these interactions to enhance system adaptability. This approach encourages minor, intentional adjustments in user behaviour to enrich the data available for system learning. This paper introduces epistemic interaction within the context of human-system communication, illustrating how deliberate interaction design can improve system understanding and adaptation. Through concrete examples, we demonstrate the potential of epistemic interaction to significantly advance human-computer interaction by leveraging intuitive human communication strategies to inform system design and functionality, offering a novel pathway for enriching user-system engagements.

The Art of the Pitch: WordPress Relationships and Sales

Laura Byrne

Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes? All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.

Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024

Tobias Schneck

As AI technology is pushing into IT I was wondering myself, as an “infrastructure container kubernetes guy”, how get this fancy AI technology get managed from an infrastructure operational view? Is it possible to apply our lovely cloud native principals as well? What benefit’s both technologies could bring to each other? Let me take this questions and provide you a short journey through existing deployment models and use cases for AI software. On practical examples, we discuss what cloud/on-premise strategy we may need for applying it to our own infrastructure to get it to work from an enterprise perspective. I want to give an overview about infrastructure requirements and technologies, what could be beneficial or limiting your AI use cases in an enterprise environment. An interactive Demo will give you some insides, what approaches I got already working for real.

The Future of Platform Engineering

Jemma Hussein Allen

FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf

FIDO Alliance

State of ICS and IoT Cyber Threat Landscape Report 2024 preview

Prayukth K V

The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development. The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers: State of global ICS asset and network exposure Sectoral targets and attacks as well as the cost of ransom Global APT activity, AI usage, actor and tactic profiles, and implications Rise in volumes of AI-powered cyberattacks Major cyber events in 2024 Malware and malicious payload trends Cyberattack types and targets Vulnerability exploit attempts on CVEs Attacks on counties – USA Expansion of bot farms – how, where, and why In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East Why are attacks on smart factories rising? Cyber risk predictions Axis of attacks – Europe Systemic attacks in the Middle East Download the full report from here: https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/

Essentials of Automations: Optimizing FME Workflows with Parameters

Safe Software

Are you looking to streamline your workflows and boost your projects’ efficiency? Do you find yourself searching for ways to add flexibility and control over your FME workflows? If so, you’re in the right place. Join us for an insightful dive into the world of FME parameters, a critical element in optimizing workflow efficiency. This webinar marks the beginning of our three-part “Essentials of Automation” series. This first webinar is designed to equip you with the knowledge and skills to utilize parameters effectively: enhancing the flexibility, maintainability, and user control of your FME projects. Here’s what you’ll gain: - Essentials of FME Parameters: Understand the pivotal role of parameters, including Reader/Writer, Transformer, User, and FME Flow categories. Discover how they are the key to unlocking automation and optimization within your workflows. - Practical Applications in FME Form: Delve into key user parameter types including choice, connections, and file URLs. Allow users to control how a workflow runs, making your workflows more reusable. Learn to import values and deliver the best user experience for your workflows while enhancing accuracy. - Optimization Strategies in FME Flow: Explore the creation and strategic deployment of parameters in FME Flow, including the use of deployment and geometry parameters, to maximize workflow efficiency. - Pro Tips for Success: Gain insights on parameterizing connections and leveraging new features like Conditional Visibility for clarity and simplicity. We’ll wrap up with a glimpse into future webinars, followed by a Q&A session to address your specific questions surrounding this topic. Don’t miss this opportunity to elevate your FME expertise and drive your projects to new heights of efficiency.

LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...

DanBrown980551

Do you want to learn how to model and simulate an electrical network from scratch in under an hour? Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)! During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook. PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides: - A fully editable and extendable library for grid component modelling; - Visualization tools to display your network; - Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses; The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well. What you will learn during the webinar: - For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills; - For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.

When stars align: studies in data quality, knowledge graphs, and machine lear...

Elena Simperl

Encryption in Microsoft 365 - ExpertsLive Netherlands 2024

Albert Hoitingh

To Graph or Not to Graph Knowledge Graph Architectures and LLMs

Paul Groth

GraphRAG is All You need? LLM & Knowledge Graph

Guy Korland

Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs. 1. Unifying Large Language Models and Knowledge Graphs: A Roadmap. https://arxiv.org/abs/2306.08302 2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs: https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/

UiPath Test Automation using UiPath Test Suite series, part 3

DianaGray10

Neuro-symbolic is not enough, we need neuro-*semantic*

Frank van Harmelen

Neuro-symbolic (NeSy) AI is on the rise. However, simply machine learning on just any symbolic structure is not sufficient to really harvest the gains of NeSy. These will only be gained when the symbolic structures have an actual semantics. I give an operational definition of semantics as “predictable inference”. All of this illustrated with link prediction over knowledge graphs, but the argument is general.

FIDO Alliance Osaka Seminar: Overview.pdf

FIDO Alliance

De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...

Product School

Recently uploaded (20)

Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf

AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...

Connector Corner: Automate dynamic content and events by pushing a button

FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf

Epistemic Interaction - tuning interfaces to provide information for AI support

The Art of the Pitch: WordPress Relationships and Sales

Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024

The Future of Platform Engineering

FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf

State of ICS and IoT Cyber Threat Landscape Report 2024 preview

Essentials of Automations: Optimizing FME Workflows with Parameters

LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...

When stars align: studies in data quality, knowledge graphs, and machine lear...

Encryption in Microsoft 365 - ExpertsLive Netherlands 2024

To Graph or Not to Graph Knowledge Graph Architectures and LLMs

GraphRAG is All You need? LLM & Knowledge Graph

UiPath Test Automation using UiPath Test Suite series, part 3

Neuro-symbolic is not enough, we need neuro-*semantic*

FIDO Alliance Osaka Seminar: Overview.pdf

De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...

O365Con18 - Exploring Conditional Access to content stored in Office 365 - Paul Hunt

2. ExploringConditional Access to content storedin Office365

3. Who am I?

4. Who am I?

5. What is this session about?

6. Access Layers in Microsoft 365 Encryption RBAC Conditional Access Azure AD PIM PAM in Office 365 Prevent unauthorized illegitimateaccess Govern legitimate access Role & risk based Standing access (Permissions) JIT & JEA With Approval (Elevationof Privilege)

7. RBAC & Conditional Access RBAC Conditional Access Role & risk based Standing access (Permissions)

8. Authentication Versus Authorisation

9. Authentication Versus Authorisation

10. When are they accessing? What do we mean by conditional access?

11. When are they accessing? What do we mean by conditional access?

12. When are they accessing? What do we mean by conditional access?

13. Additional options – EM+S E5

14. Additional options EM+S

15.

16. What can be achieved with ADFS

17. What can be achieved with ADFS

18. What can be achieved with ADFS

19. What can be achieved with ADFS

20. What CAN’T be achieved with ADFS? @tenant.onmicrosoft.com

21.

22. What can be achieved with E1/E3/E5

23. What can be achieved with E1/E3/E5

24. What can be achieved with E1/E3/E5

25. What can be achieved with E1/E3/E5

26. What can be achieved with E1/E3/E5

27. What can be achieved with E1/E3/E5

28. What can be achieved with E1/E3/E5

29. What can be achieved with E1/E3/E5

30. What can be achieved with E1/E3/E5

31. What can be achieved with E1/E3/E5

32. What can be achieved with E1/E3/E5

33. MFA Pro Tip!

34. SharePointPerimeterBlocking&MFA

35.

36. What can be achieved with EM+S E3

37. What can be achieved with EM+S E3*

38. SharePointSiteCollectionScoped Policies

39.

40. Site Classification Label

41. Central Admin Control

42. BRK3101 – Securing your SharePoint and OneDrive content with access policies and labels – Sesha Mani Watch the Ignite Session for Demos

43.

44. What can be achieved with EM+S E5

45. What can be achieved with EM+S E5

46. RiskBasedPolicies,AIP& CloudAppSecurity

47. Access Layers in Microsoft 365 Encryption RBAC Conditional Access Azure AD PIM PAM in Office 365 Prevent unauthorized illegitimateaccess Govern legitimate access Role & risk based Standing access (Permissions) JIT & JEA With Approval (Elevationof Privilege)

48. PIM & PAM Azure AD PIM PAM in Office 365 JIT & JEA With Approval (Elevationof Privilege)

49.

50. Comparing PIM/PAM Requires EM+S E5 (Or Azure AD P2) Permits Role based control Available for 32 Admin Roles Available for Azure Resources Ignite – BRK3248 Person Focussed GA Announced 25/09 @ Ignite Requires Office 365 E5 (or Advanced Compliance Sku) Permits TASK/ROLE based control Only available for EXCHANGE initially. Ignite – BRK3222 Task Focussed Azure PIM Office 365 PAM

51.

52.

53.

54. PIMinaction

55.

56. Configuring Office 365 PAM

57. Configuring Office 365 PAM

58. Configuring Office 365 PAM

59. Configuring Office 365 PAM

60. Configuring Office 365 PAM

61. Configuring Office 365 PAM

62. Configuring Office 365 PAM