Identity and Access management

Secure and manage user sign-ins, increase productivity and user management.

User identity is a critical component of information security, especially for public services such as Microsoft Office 365. Any compromise in the protection of a user's identity also compromises system security. Wheather it’s a password breach to gain access to sensitive information or a more advanced attack that exploits your identity to gain access to company systems, Microsoft 365 services such as Multifactor authentication (MFA) and and Conditional Access configuration help to reduce the risks.

Scope of Identity and Access management implementation includes:

• Defining and preparing protection policies using Multifactor authenticator (MFA)

• Setting up MFA authentication for access to Office 365 services, using Azure AD for a defined set of users

• Conditional Access setting - configuring two policies of conditional access on the user's request:

  • Block access - If the user tries to connect to O365 applications from a location outside of Croatia, access to a device that is not managed by Intune will be blocked

  • MFA access - MFA is required for access to cloud applications - only from devices that are not managed by Intune or trying to connect outside of the organization's premises

• Uploading a single web application to the Internet, using Web Application Proxy, AD authentication, and optional additional protection with MFA and Conditional Access

• Testing configured functionalities

• Training for managing Azure AD Premium P1 services and configured functionalities - 4 hours

Prerequisites:

• Active Azure tenant, synchronized user identities and assigned Microsoft 365 E3 or EMS E3

• Active Office 365 services

• Appropriate administrative privileges on the client’s tenant

• Responsible individual who will confirm the functionality of the established security services in accordance with the implementation services specification