Balancing AI risk assessment with VPNs

Iron Contributor

So I really like the features AAD has that allow it to evaluate each individual sign-in against patterns of behavior, the impossible travel notifications, and other features in that vein. What I'm curious about is how you balance the need to keep that information reliable by not skewing sign-in data, and the recommendations to connect to a VPN while on unknown networks like a coffee shop or an airport and other networks like that. We want our users to be secure, but I also don't want to run the risk of locking them out because their user risk level is raised due to a legitimate activity. Thoughts on that?

1 Reply
This is my personal opinion: I don't recommend users to connect to a VPN when they are on a non-secure network.
I would advise you to use a proxy like Zscaler or proxy web access through MCAS