Azure AD Conditional Access Insights & Auditing with Microsoft Sentinel
Read OriginalThis technical article details how to use Microsoft Sentinel to gain insights and audit Azure AD Conditional Access, a core component of Microsoft's Zero Trust strategy. It explains how Conditional Access policies are evaluated, how to interpret sign-in logs, and demonstrates using KQL operators like mv-expand to effectively hunt through security data for multiple, complex policies.
Comments
No comments yet
Be the first to share your thoughts!
Browser Extension
Get instant access to AllDevBlogs from your browser
Top of the Week
No top articles yet