Corona put many companies in a position where they had to enable work from home. As a result, the need for a platform to share information increased, and many companies used Microsoft Teams for this reason. Microsoft makes it very easy for companies. All it takes is to create a tenant, book licenses, create identities, and Teams can be used. Since Microsoft Teams makes it easy to collaborate with external identities, this function is also trendy. However, unless you regulate it, every Teams owner can invite guests. For each guest, a guest identity is created in Azure AD. If it is not regulated who is allowed to create new teams…
-
-
How Attackers can bypass Conditional Access
During the development of the access concept for Microsoft 365 solutions, access scenarios were planned, dependencies discussed, roadmaps drawn up, users informed, and so on. When I think back to those appointments, I often say that multifactor authentication is secure, and there is no way around it. 2021 I was proven wrong By joining dinext. pi-sec, I had the task of taking a closer look at a hacking tool and testing it. The findings of this test should influence my approaches to Conditional Access until today. The tool is called Evilginx2. What is EvilGinx2? The tool is a man-in-the-middle attack framework and can be used to phish credentials and session…
-
Which Role is the right one? Compare Azure AD Roles easy!
When implementing a least Privilege Concept, there are a few hurdles to face. One of those hurdles is choosing the right role for the job. With RBAC, Microsoft offers us a variety of different roles with which rights to M365 and Azure Roles can be granularly assigned. But which role is the right one?As an example, let’s take the M365 Security roles. The following roles are available: Security Admin Security Operator Security Reader Microsoft offers in its docs a good explanation of the individual roles broken down into actions and a description. However, comparing this information with each other is time-consuming.It is easier with the Compare function, which can be…
