Everyone nowadays knows that MFA is a must and not optional or nice to have. But what if the chosen MFA factors are still too weak to face modern threats? In this session you will learn about insecure MFA methods that we are all using regularly and what makes a strong factor better than the others. In the end we will set up things in your Entra ID tenant and scope the policies to sensitive applications.

Assigning a role or access to resources is one of the most basic admin activities in organizations, but removing access after a user changes their role or moves to another branch office is often just forgotten. The result is a permissions sprawl that's not only a problem with users accessing information not intended for them, but it is also a security concern for organizations, because lateral movement often relies on unintended access rights for lesser secured identities. In this session you will learn more about Entitlement Management and Access Packages, understand their capabilities and limitations and implement the first access package in your tenant.