Episode 84: "Entra like Magenta"

Apr 4, 2024

Microsoft Identity CXP team members, Tarek Dawoud and Mark Morowczynski, discuss topics like Conditional Access, phish-resistant MFA, evolving threats in cybersecurity, and the importance of learning KQL. They delve into passwordless authentication, Azure access management, and the significance of continuous security improvements.

Ask episode

Chapters

Transcript

Episode notes

Introduction

00:00 • 2min

Evolving Security Practices and Passwordless Authentication

02:11 • 32min

Modernizing User Expectations and Access Management in Azure

34:25 • 8min

Comprehensive Guide to KQL: Basics, Advanced Techniques, and Practical Applications

42:53 • 2min

Insightful Discussion on the Importance of Learning Kusto and Book Promotion

44:36 • 2min

Exploring Passwordless Security and Incremental Security Improvements

46:10 • 4min

"Back by popular demand" - even if they do say so themselves! In this episode we are excited to welcome back to the show Tarek Dawoud and Mark Morowczynski from Microsoft's Identity CXP team. We discuss the current state of Identity and dive into Conditional Access, phish-resistant MFA, the latest threats and why attacks only get better, they never get worse. Tarek and Mark share some great tool tips and we close the episode by talking about Mark's new KQL book and how KQL is fast becoming an essential skill. Here are the links to content mentioned in the episode: Microsoft Digital Defense Report (https://aka.ms/mddr) Road to the cloud - Moving from AD to AAD. (https://aka.ms/AD2AAD) Video explaining how passkeys are phishing resistant (https://aka.ms/PhishingResistantExplained) Entra ID assessment for customers to examine their environments (https://aka.ms/ZTAssess) Hiding in the clouds - app consent and permissions (https://www.youtube.com/watch?v=mxOHcqHxpi8) AzureADToolkit - script to go look at the over permissioned apps (https://github.com/microsoft/AzureADToolkit) Legacy Protocol Workbook (https://techcommunity.microsoft.com/t5/microsoft-sentinel-blog/azure-sentinel-insecure-protocols-workbook-implementation-guide/ba-p/1197564) Identity workbooks (https://learn.microsoft.com/en-us/entra/identity/monitoring-health/howto-use-workbooks#access-microsoft-entra-workbooks) Tarek Dawoud is an expert of 10+ years in Microsoft's Identity division serving on the core directory team and for the past 4 years on the Customer Success Team. He is now the lead of the architect team writing white papers and creating workshops and reference architectures to facilitate customers' Identity journey to the cloud. Mark Morowczynski is a Program Manager in the Identity CXP team. He works with some of the largest and most complex customers on their deployment of Azure AD. You can find Mark on Twitter (https://twitter.com/markmorow) Check out Mark's book "The Definitive Guide to KQL" - Coupon code 'KUSTO' (https://www.microsoftpressstore.com/store/definitive-guide-to-kql-using-kusto-query-language-9780138293383)