Azure AD Conditional Access Flashcards
Azure AD Conditional Access
-a set of policies that enforce after a successful login attempt. These policies help to improve security and compliance by fine-tuning the authentication process.
-Conditions, and Actions if Conditions are meet.
-Conditional Access allows access to applications only from trusted and compliant devices. It can be evaluated as part of Identity Protection, which is a tool in Azure AD that brings signals together, makes decisions, and enforces organization policies.
-The only priority among policies are that block policies always win. This means that if one or more block policies match during a sign-in, the authentication attempt is blocked, even if there are other policies granting access at the same time.
What is the minimum license required to configure Azure AD Conditional Access?
Azure AD Premium P1
For Conditional Access policies, what happens when two overlapping polices are place?
the most restrictive policy applies when overlapping policies are put into place.
When configuring Azure AD Conditional Access policies, which are manadatory requirements?
-User/Groups
-Cloud apps
-Access Controls
-the rest are optional
Where can Conditional Access policies be created?
Conditional Access policies can only be created in the Azure portal
Currently, Azure Active Directory detects six types of risk detections:
-Users with leaked credentials: High
-Sign-in from anonymous IP address: Medium
-Impossible travel to aytypical locations: Medium
-Sign-ins from unfamiliar locations: Medium
-Sign-in from infected devices: Low