Conditional access is a modern security mechanism that emphasizes identity as a security layer. It brings together signals from various sources such as the device a user attempts authentication from or the location from which they're attempting to authenticate and uses these signals to make a decision and enforce a policy. Azure AD Conditional Access policies are simple if-then statements that work to verify every attempt at authentication.
In this lab, you will set up and test a conditional access policy to trigger a multi-factor authentication request.
Note: Due to this lab requiring the creation of a Microsoft 365 organization with an Admin Center, if you don't already have one you will need to provide a mobile phone number to pass the account creation process.
Learning Objectives
Upon completion of this lab, you will be able to:
- Create a custom conditional access policy in Azure AD
- Test against target users whether the policy works
Intended Audience
- Candidates studying for the SC-900 (Microsoft Security, Compliance, and Identity Fundamentals) Certification exam
Prerequisites
- Familiarity with Azure AD is recommended, but not necessary
Adil is a Microsoft Certified Trainer, former Azure Engineer, and loves all things Azure. He is a certified Azure Administrator and Azure DevOps Expert and has worked for some of the biggest MSPs in the world (Cognizant, New Signature, CoreAzure). He loves to combine his two passions: cloud and teaching.
Adil specializes in Azure Infrastructure services and has a curiosity for new, in-preview services from Azure, getting his hands familiar with the content before most of the world does. Outside of work, Adil helps run a growing community of IT professionals looking to break into the cloud and regularly runs workshops and webinars.