You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
conditional access
About this tag
Conditional access is a recurring theme in discussions about Microsoft Entra ID (formerly Azure Active Directory) and Microsoft 365 security. Recent threads highlight how conditional access policies can leave gaps if not properly configured, particularly regarding legacy authentication flows like Azure CLI. A major password-spray campaign in June 2026 compromised 78 accounts across 64 organizations, exploiting the difference between having MFA enabled and enforcing it through conditional access. Other topics include context-based redirections for Windows 365 and Azure Virtual Desktop, which use conditional access signals to control clipboard, USB, and printer redirection. Microsoft Authenticator's jailbreak detection and managed identity security posture management also relate to conditional access enforcement.
Between June 12 and June 26, 2026, attackers reportedly made more than 81 million login attempts against Microsoft cloud accounts through Azure CLI, compromising at least 78 accounts across 64 organizations by abusing a legacy OAuth password flow. The striking number is not the 81 million; cloud...
Between June 12 and June 26, 2026, Huntress researchers observed a password-spray campaign against Microsoft 365 and Azure CLI sign-ins that generated more than 81 million login attempts and compromised at least 78 accounts across 64 organizations. The numbers are big, but the lesson is more...
Huntress says an automated password-spray campaign that began on June 12, 2026, targeted Microsoft Azure CLI authentication and produced more than 81 million login attempts, compromising 78 Microsoft accounts across 64 organizations by late June. The campaign is not remarkable because password...
azure cli
azure cli security
conditionalaccess
entra id conditionalaccess
mfa enforcement
microsoft entra
microsoft entra id
oauth ropc
password spraying
Huntress made Managed Identity Security Posture Management generally available on June 30, 2026, extending its security platform for Microsoft 365 tenants with managed hardening across Entra ID, Exchange, SharePoint, and Teams after an Early Access program covering more than 12,000 tenants. The...
Microsoft put context-based redirections for Windows 365 into public preview in June 2026, giving Enterprise and Flex dedicated Cloud PC administrators a way to control clipboard, drive, printer, and USB redirection according to Entra Conditional Access signals. The change is narrow in feature...
Microsoft Authenticator is now rolling out jailbreak and root detection for Microsoft Entra work and school accounts on Android and iOS, with affected users seeing warnings first and eventual blocks expected broadly by mid-2026. The practical answer is narrower than the alarm suggests: your...
Microsoft 365 security baselines are moving from consultant checklists to operating doctrine in 2026, as Microsoft, CISA, and security practitioners converge on a simple message: tenants must be configured, monitored, and reviewed as living security systems, not as default SaaS subscriptions...
Microsoft has put context-based redirections for Windows App into public preview for Windows 365 and Azure Virtual Desktop in June 2026, letting administrators condition clipboard, drive, printer, and USB redirection on Entra Conditional Access signals such as device compliance, user membership...
The FBI’s Internet Crime Complaint Center warned in May 2026 that Kali365, a phishing-as-a-service platform first seen in April, is targeting Microsoft 365 users by abusing OAuth device-code authentication to capture access tokens and bypass multifactor authentication without stealing passwords...
Microsoft 365 Baseline Security Mode is an opt-in security bundle in the Microsoft 365 admin center that centralizes recommended controls across authentication, files, Exchange Online, SharePoint, OneDrive, Teams, and Entra ID for tenant administrators. That sounds like a switch, and Microsoft...
Most Microsoft 365 configuration drift happens when a tenant’s current security settings gradually diverge from the baseline an MSP or IT team originally deployed, often through small operational changes that accumulate over months without centralized review. That is the core warning in an MSSP...
The FBI issued a May 21, 2026 public warning that a phishing-as-a-service platform called Kali365 is targeting Microsoft 365 accounts by abusing device-code authentication to capture OAuth tokens and bypass multi-factor authentication. That makes this less a story about one new phishing kit than...
Microsoft said on May 8, 2026, that Exchange Online will stop supporting direct Exchange ActiveSync certificate-based authentication by the end of 2026, forcing affected mobile mail clients to authenticate certificates through Microsoft Entra ID instead of presenting them straight to Exchange...
Microsoft has quietly removed one of the biggest identity-management frictions for enterprise customers: the inability to cleanly use third-party MFA providers inside Microsoft Entra ID without sacrificing policy control. The new external MFA capability is now generally available, and Microsoft...
Microsoft’s upcoming enforcement change for Conditional Access in Entra ID is a clear pivot toward consistency and defense‑in‑depth: policies that target All resources will now be evaluated even when those policies include resource exclusions, and sign‑ins that request only minimal OpenID...
Conditional Access in large tenants is often a map of good intentions and accidental complexity, and idPowerApp promises to redraw that map into clear, printable slides so teams can see, reason about, and remediate policy interactions at a glance.
Overview
Conditional Access (CA) is one of the...
Microsoft’s Windows 365 just added a major twist to its Cloud PC story: administrators can now publish individual, cloud‑hosted applications — Outlook, Word, OneDrive, Edge, PowerPoint and line‑of‑business apps — without provisioning a full Cloud PC for every user, with the feature opening as a...
Microsoft’s decision to let organizations stream single Windows applications from the cloud — instead of entire Cloud PC sessions — marks a pragmatic pivot in how enterprises will adopt Windows 365 for day-to-day workforces and frontline roles. The new Windows 365 Cloud Apps feature, now in...
Microsoft's latest updates to the Windows 365 family push the Cloud PC experience closer to a full, resilient desktop replacement — but they also raise important questions for IT about licensing, capacity, and user data protection. The company has expanded the Connection Center experience so...
autopilot
capacity planning
cloud pc
conditionalaccess
crdr
cross-region disaster recovery
data residency
disaster recovery
dr plus
intune
multi-monitor
network center
onedrive
sharepoint
sign-in experience
token security
windows 365
windows 365 boot
windows 365 link
windows apps
Microsoft is weaving its AI assistant deeper into the Office experience by rolling Copilot Chat and agent capabilities directly into core Microsoft 365 apps — Word, Excel, PowerPoint, Outlook, and OneNote — bringing a unified, in-context chat pane and a raft of new tools aimed at turning an AI...
admin controls
admin tools
agent
agent pricing
ai adoption
ai applications
ai governance
ai in business
ai in excel
ai in office
ai in word
ai productivity
anthropic
automation
billing and tax
chart suggestions
conditionalaccess
content-aware ai
contextiq
copilot
copilot agents
copilot chat
copilot pages
copilot platform
copilot pricing
cost management
cross-application ai
data governance
data residency
data security
dlp
edps
efficiency
email drafting
enterprise
enterprise ai
enterprise governance
enterprise it
excel
excel copilot
file picker
formulas
governance
governance and compliance
governance and monitoring
gpt-4
grounding
image generation
in-app ai
in-editor chat
it governance
licensing
metered usage
microsoft 365
microsoft copilot
microsoft graph
microsoft office
model provenance
model routing
model suppliers
multimodal ai
multimodal prompts
notebook
notes and email
onenote
openai
outlook
outlook ai
outlook copilot
pages
pay-as-you-go
pay-as-you-go agents
pilot program
powerpoint
powerpoint copilot
pricing
privacy
productivity tools
project notebooks
prompt
roi
rollout
security
slide design
spreadsheet
studio setup
tenant copilot
tenant data
tenant grounding
tenant isolation
tenant-grounded copilot
two-tier copilot
web grounding
web-grounded ai
word
work-grounded copilot
workflow automation