Hi @svhelden , the tiering concept for on-premise environment is just a
subset of tiering in cloud-based environments. Here, it is much more
complex (as you can see at the Enterprise Access Model Securing
privileged access Enterprise access model - Privileged access |
Microsoft Learn). However, one ...
@testuser7 we create one Entra-group and then writeback that group under
the built-in "Domain Admins" group as child-group. (member
of)Interesting idea. Obviously this would make your domain security rely
on Entra ID, meaning, any Entra admin could become a Tier 0 admin. Thus
Entra would be part of ...
Hi @The_Goat , Every virtualization host that run T0 VM guests (e.g.,
Domain Controllers, Certification Authorities or EntraID Connect boxes)
will automatically become Tier0. Although you can protect VM guests
using hard disk encryption or even complete VM encryption, this
protection will only ensur...
Latest Comments