Zero Trust Identity Controls - Essentials Series - Episode 2


Manage episode 293231408 series 1320201
By Jeremy Chapman and Microsoft Mechanics. Discovered by Player FM and our community — copyright is owned by the publisher, not Player FM, and audio is streamed directly from their servers. Hit the Subscribe button to track updates in Player FM, or paste the feed URL into other podcast apps.

Tour your identity options when moving to the Zero Trust security model. Our last Essentials episode gave a high-level overview of the Zero Trust security model principles: identity, endpoints, applications, networks, infrastructure, and data.

Join our host, Jeremy Chapman, as he unpacks the foundational layer of the model with identity. As the primary control plane for Zero Trust, it acts as the front door for people, service accounts, and devices as each requests access to resources. Identity is at the core of the Zero Trust concepts of never trust, always verify and grant the appropriate level of access through the principle of least privilege.

Verify Explicitly Azure AD - easily implement additional protections to verify explicitly Multi-factor authentication (MFA) - requires an additional authentication factor. Replace passwords with Microsoft Authenticator, Windows Hello, or FIDO2 keys. Activity reports in the Authentication methods - see who’s capable of MFA and passwordless authentication, how many recent registrations and by type. Usage - see the distribution of MFA sign-ins and by method, as well as the number of password changes and resets.

Least Privilege access Conditional Access in Azure AD - uses real-time intelligence at the time of sign-in to assess the risk level, then blocks or grants access. Built-in Insights and Reporting - expose the impact of enabled policies pre- and post enforcement.


00:00 - Introduction 00:37 - Demo in Azure AD 01:47 - Azure AD Application Proxy 02:50 - How to set up multi-factor authentication 04:44 - Activity Reports for admins 05:21 - Least privileged access and conditional access 07:22 - Conditional Access Insights and Reporting 08:16 - Wrap up

► Link References: For tips and demonstrations, check out our series at Learn more at

► Unfamiliar with Microsoft Mechanics? We are Microsoft’s official video series for IT. You can watch and share valuable content and demos of current and upcoming tech from the people who build it at #Microsoft.

Subscribe to our YouTube:

Join us on the Microsoft Tech Community: Watch or listen via podcast here:

► Keep getting this insider knowledge, join us on social:

Follow us on Twitter:

Follow us on LinkedIn:

Follow us on Facebook:

385 episodes