MicrosoftHi Alex,
Could we make this even more secure and base it on more modern concepts than a golden ticket or certificate; especially if you’re not using your ace: the 'pluton' chip. Even though we do have your full Conditional Access concepts including your MFA factores we together can do better, though we and our customers/clients are tenants in the clouds and just love to be even more secure; we own our data and are responsible if it's being misused. I'll send your team some suggestions regarding some work I have done for some clients; making it easier for governments and public sector to stay in the future secure. Love if we could also deliver some improvements the other way, not only up but also down..
Best regards
MrSmith
BTW:
Just a small sweet (external) identities dream to open up, not the security, but to allow even more secure concepts in the main tenant (B2B); at least for the customer owned applications, the E(nterprise)App's.
