This offer provides Microsoft 365 customers customers with best practice implementations and understanding of the P2 features of Entra ID (previously known as Azure AD P2)
This offer provides a comprehensive solution leveraging the advanced features of Entra ID P2 (previously Azure Active Directory P2 - Azure AD P2) a part of the Microsoft 365 suite of products
Key Features to be Implemented During This Engagement:
First, review Entra ID P1 features:
• Multi-Factor Authentication (MFA):
- Enforce strong authentication methods, such as biometrics and smart cards, to verify user identities.
- Reduce the risk of unauthorized access, even in the event of compromised passwords.
• Conditional Access Policies:
- Assess your environment policies if any are existing.
- Provide a comprehensive list of Conditional Access policies according to best practices and customized to your tenant.
- Implement "zero trust" security principles to ensure access is granted only to trusted entities.
- Recommend unmanaged devices policies and the integration with Intune/MDM solution to get compliance state where possible.
• Entra ID Password Protection::
- Discover and Implement Custom banned password list.
- Discover and explain Global banned password list.
Secondly Delve into Entra ID P2 features:
• Entra ID Identity Protection:
- Automatically block or require additional authentication for risky users and risky sign-ins using Conditional Access policies.
- Explain and explore Identity Protection Dashboards and analysis.
• Privileged Identity Management (PIM):
- Monitor, control, and audit privileged roles within your organization.
- Limit access to critical resources and reduce the risk of misuse.
• Azure AD Identity Governance:
- Streamline access request and approval processes.
- Ensure proper oversight and governance of identity-related tasks.
- Explore and test Access Reviews & Access Packages.
• Passwordless Authentication:
- Explore passwordless sign-in methods like Windows Hello, FIDO2 keys, and phone sign-in.
- Eliminate the vulnerabilities associated with traditional passwords.