Please enable JavaScript.
Coggle requires JavaScript to display documents.
Azure Security, PIM, (What is Conditional Access) - Coggle Diagram
Azure Security
What resource types can Azure Defender secure
Azure Defender for servers
Azure Defender for App Service
Azure Defender for Storage
Azure Defender for SQL
Azure Defender for IoT
What is Identity Protection
Identity Protection is a tool that allows organizations to accomplish three key tasks
Automate the detection and remediation of identity-based risks
Investigate risks using data in the portal
Export risk detection data to third-party utilities for further analysis
PIM
Provide just-in-time privileged access to Azure AD and Azure resources
Assign time-bound access to resources using start and end dates
Require approval to activate privileged roles
Enforce multi-factor authentication to activate any role
Use justification to understand why users activate
Get notifications when privileged roles are activated
Conduct access reviews to ensure users still need roles
Download audit history for internal or external audit
What is Conditional Access
Conditional Access policies are enforced after first-factor authentication is completed
Common signals
User or group membership
IP Location information
Device
Application
Real-time and calculated risk detection