https://krisby.dev/en/tags/identity-protection/ Recent content in Identity Protection on krisby.dev Hugo en Mon, 25 May 2026 00:00:00 +0000 https://krisby.dev/en/writeups/conditional-access-identity-protection/ Mon, 25 May 2026 00:00:00 +0000 https://krisby.dev/en/writeups/conditional-access-identity-protection/ <h2 id="background">Background</h2> <p>I wanted to better understand how Microsoft Entra Identity Protection works in practice and how risk-based Conditional Access can be used to protect user accounts.</p> <p>Instead of requiring MFA for every sign-in, I wanted to see how Entra reacts when a user or a sign-in is considered risky.</p> <h2 id="what-i-built">What I Built</h2> <p>In this lab, I configured:</p> <ul> <li>Microsoft Entra Identity Protection</li> <li>Risk-based Conditional Access policies</li> <li>MFA using Microsoft Authenticator</li> <li>A dedicated test account for simulating different sign-in scenarios</li> </ul> <h2 id="what-i-tested">What I Tested</h2> <p>I tested several scenarios, including:</p>