Event banner

Protecting your user identities

Event Ended
Thursday, Apr 13, 2023, 08:00 AM PDT
Online

Event details

Explore Microsoft identity security features. From password attacks to token replay, we will guide you through the technologies we have in place to help defenders like yourselves mitigate, investigat...
Trevor_Rusher
Updated Dec 27, 2024
Identity
Tech Accelerator
Deleted's avatar
Deleted
Apr 13, 2023
How does conditional access stand in this comparison, maybe in combination with other methods? Is e.g. username&password + CA comparable to some MFA methods?
  • KoprowskiT's avatar
    KoprowskiT
    MVP
    Apr 13, 2023
    Yes. We can mix all of these features, like checking the risk of the user + checking the risk of the session + forcing the MFA challenge, and then when passed, granting access to the system, application or even document.
    • Deleted's avatar
      Deleted
      Apr 13, 2023
      What I mean is, is CA better than for instance SMS MFA, considering the sim swapping?
      • KoprowskiT's avatar
        KoprowskiT
        MVP
        Apr 13, 2023
        CA is an evolution. SMS factor in MFA is not secure anymore (or is not considered as secure, as it is easy to fake; same as voice). You should plan to rid of SMS/voice in favour of other methods of MFA. You can have something like this in your tenant: Method | Target | Enabled FIDO2 security key | All users | Yes Microsoft Authenticator | All users | Yes SMS | All users | No Temporary Access Pass | All users | Yes Third-party software OATH tokens | Specific Groups | Yes Voice call | All users | No Email OTP | Specific Groups | Yes Certificate-based authentication | Specific Groups | Yes
Date and Time
Apr 13, 20238:00 AM - 8:30 AM PDT