Microsoft Entra B2B Collaboration
Microsoft Entra B2B Collaboration — part of the Entra External Identities feature set — lets you invite people from outside your tenant (partners, vendors, contractors) to access specific apps and…
Tag: Conditional Access
Require MFA to Join or Register Devices in Microsoft Entra ID
By default, when a user joins or registers a device to Microsoft Entra ID, only their username and password are required. If those credentials are stolen (phishing, breach, brute force),…
Microsoft Entra ID Device Join Types: Joined vs Registered vs Hybrid (Complete Guide)
Entra ID Device Join Types define the relationship between a device and your organization. Different join types give different levels of trust, control, and access. There are three: Entra Joined,…
Blocking Access from Specific IP Addresses Using Conditional Access in Microsoft Entra ID
Sometimes the right policy is just block — not “require MFA,” not “require compliant device,” but a hard no. Common scenarios: an IP range tied to a known-malicious VPN, a…
Enforcing MFA for Admin Roles via Conditional Access in Entra ID
Microsoft’s number-one recommended baseline Conditional Access policy is require MFA for any administrator. The premise is simple: admin accounts have the keys to the kingdom — if an attacker phishes…