Strengthen Your Cybersecurity with Microsoft’s New Conditional Access Policies – Act Now!

By - January 9, 2024

As your first-choice advisor in the middle market, we at RSM are committed to keeping you informed about the latest cybersecurity measures that can safeguard your organization. Today, I want to bring to your attention a significant update from Microsoft that directly impacts your security strategy.

Microsoft’s Enhanced Security Approach
Microsoft has introduced a new set of Microsoft-managed Conditional Access policies within Microsoft Entra. These policies are a proactive response to evolving digital threats and focus on multifactor authentication, which prevents 99.22% of account compromises. The aim is simple: to reinforce your cyber defenses and maintain trust in technology.

What’s new in the Conditional Access policies?
Microsoft is deploying three key policies aimed at boosting your organization’s security posture:
1. Multifactor authentication for admins: This policy requires admins accessing Microsoft Admin Portals to use multifactor authentication (MFA), covering 14 highly privileged admin roles.
2. MFA for per-user MFA users: Targeting users configured with per-user MFA, this policy mandates MFA for all cloud apps, applicable to specific tenant types.
3. MFA and reauthentication for risky sign-ins: All users are required to undergo MFA and reauthentication for sign-ins deemed high-risk, such as abnormal travel patterns or password spray attacks.

These policies are carefully designed to be flexible yet robust, allowing simple modifications like excluding certain users or adjusting the policy mode.

Why is this important for your business?
Enhanced Security Measures: With these policies, Microsoft significantly elevates the security level of your IT environment, especially for those with higher-level access privileges.
Automated Compliance: These changes align with various regulatory standards, ensuring that your business remains compliant without extra effort.

How RSM Can Help
We understand the importance of tailored security solutions. While these Microsoft-managed policies provide a strong baseline, your unique business requirements might call for additional customization.
– Advisory: We are here to help you understand these new policies and how they fit into your strategy for achieving the Zero Trust security framework.
– Deliver Custom Policies: If you need more personalized policy settings, our team is ready to assist in creating and implementing custom Conditional Access policies that align with your specific needs.
– Maintain Proactively: Our ongoing support and managed service offerings ensure that your organization’s security posture remains robust and adaptive to new challenges and Microsoft changes.

Take Action Now
We highly recommend reviewing your current Conditional Access policies to ensure that they align with these new changes. Remember, security is not just about compliance; it is a fundamental component of your business continuity.
For any assistance or if you wish to discuss how these changes impact your organization specifically, please do not hesitate to reach out to us. Our team at RSM is ready to provide the expertise and support you need to navigate these updates seamlessly.
Together, let’s ensure that your organization remains secure, compliant, and ahead in the digital landscape.

To learn more about Microsoft Managed Conditional Access Policies, reach out to any of the RSM Team Members below:

Ben Seaba: ben.seaba@rsmus.com

Samantha Koehn: samantha.koehn@rsmus.com

Cody McLees: cody.mclees@rsmus.com

Corey Weeklund: corey.weeklund@rsmus.com

Further Resources:

https://learn.microsoft.com/en-us/entra/identity/conditional-access/managed-policies

https://rsmus.com/technologies/microsoft.html

Ben Seaba is a dedicated Microsoft 365 Engineer on the RSM Modern Work team. Ben specializes in building and supporting innovative Microsoft 365, Entra, and Azure solutions for clients. His expertise lies in leveraging these platforms to enhance organizational efficiency and productivity.

Receive Posts by Email

Subscribe and receive notifications of new posts by email.