MFA for admin roles

1. Bakgrunn

Oppgave i prosjektet:
Implementere conditional access baseline (report mode)
Conditional Access baseline ved UiO - Universitetets senter for informasjons­teknologi

NB. Dette er en testregel for testing og eventuell endring av regel MFA for Azure Roles

2. Fremgangsmåte

2.1 Directory Roles

Application administrator
Billing administrator
Conditional access administrator
Exchange administrator
Global administrator
Groups administrator
Helpdesk administrator
Intune administrator
License administrator
Privileged role administrator
Reports reader
Security administrator
Security reader
Service support administrator
SharePoint administrator
Teams administrator
User administrator
 

2.2 Conditional Access policy

MFA for admin roles - Report Only

  • Assignments
    • Users or workload identities
      • Included
        • Se directory roles over
    • Cloud apps or actions
      • None
    • Conditions
  • Access controls
    • Grant
      • Grant Access - Require MFA
    • Session
      • 9H

 

Publisert 1. apr. 2022 10:09 - Sist endret 1. apr. 2022 10:14