Differences

This shows you the differences between two versions of the page.

--- azure:az-500:manage_secure_access_by_using_azure_ad [2022/07/21 19:16] – [Azure MFA Registration Policy] mmuze
+++ azure:az-500:manage_secure_access_by_using_azure_ad [2022/07/22 23:17] (current) – [§ Identity Protection] mmuze
@@ Line 12: / Line 12: @@
   * [[azure:az-500:azure_privileged_identity_management|Azure Privileged Identity Management]]
-====== § Identity Protection ======
+====== Identity Protection ======
+  * Identity Protection provides policies for a few common scenarios.
+  * These policies require an AAD P2 license
+  * [[https://docs.microsoft.com/en-us/azure/active-directory/identity-protection/concept-identity-protection-policies]]
+  * These are under ''Azure AD/Manage/Security/Identity Protection/Protect'' and include these:
+    * **Azure AD MFA registration policy** - requires users to register for MFA
+    * **Sign-in risk policy** - a risk score is calculated to indicate the likelihood that a sign-in was not performed by the user. Based on this score administrators can choose to block access, allow access or allow access but require multi-factor authentication.
+    * **User risk policy** - a risk score is calculate to indicate the likelihood that a user account has been compromised. Based on this score administrators can choose to block access, allow access or allow access but require a password change.
   * [[https://docs.microsoft.com/en-us/azure/active-directory/identity-protection/overview-identity-protection]]
@@ Line 45: / Line 53: @@
   * MFA **Enabled** = The admin has enabled MFA on the account, but the user hasn't set it up.
   * MFA **Enforced** = The user has completed the setup of their MFA.
+  * [[https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-userstates#azure-ad-multi-factor-authentication-user-states]]
 ===== Risk Events =====