Use Azure AD to understand Risky Sign-ins in Microsoft 365 and Azure AD

Use Azure AD to understand Risky Sign-ins in Microsoft 365 and Azure AD

Organisations that are unfortunately not yet able to roll out multi-factor authentication can use insights to promote the activation of MFA within the organisation.

User accounts are massively misused by different types of attackers who already have your password in their possession. In the first phase, Multi-factor authentication is the most recommended feature to deploy. How to activate Multi-Factor Authentication (MFA) in Microsoft Office 365?

Azure AD activate risky sign-ins with a demo account

Activate a Microsoft 365 E5 demo licence via admin.microsoft.com and activate it on your user account.

1

Thanks to Azure AD Microsoft 365, you are able to pull reports on Risky sign-ins, Risky users, etc.

Browseto https://portal.azure.com.

1

Open Azure Active Directory -> Open report: Here you see Risky Users, Risky Sign-ins and Risk Detection.

1

This report shows all risks on all current users.

1

If you select the user, you can see why they have increased risks.

Azure AD export

Open Azure Active Directory

1

Click on Sign-ins to view all login attempts.

1

Download the complete CSV file.

1

Download the CSV file and filter for example on not a specific location to get insights on risks and successful unwanted login attempts.

Summary

With up-to-date data, you are able to understand the risks that exist in your environment today and act accordingly. It is often unknown how many risks there are and how many sign-ins are happening from places we don't have users.

Is your organisation now convinced of the value of multi-factor authentication?

Also read

How to activate DKIM in Microsoft 365?
How to use the latest version of Apple Passwords in iCloud for Windows?
How to activate Multi-Factor Authentication (MFA) in Microsoft Office 365?
Managing app passwords for legacy applications - Multi-factor authentication

Jasper

Jasper

Welcome to 365tips.be. On this website you can read articles and experiences about Office 365 with focus on Microsoft Teams. Feel free to ask me a question and I will answer it in a blog post. Help others by giving feedback at the bottom of the articles. This blog is made in Dutch. The multilingual website is offered with best-effort machine translation.
0 0 votes
Product review
Subscribe
Please let us know if there are
guest
0 Reactions
Inline feedbacks
See all comments
0
Would love to know your thoughts, please leave a comment.x
()
x