2025-07-26 –, Track 1
Despite robust capabilities, many organizations still struggle with misconfigurations and overlooked vulnerabilities in their identity infrastructure. This session examines the most prevalent security issues in Microsoft Entra ID (formerly Azure AD) and Active Directory, including over-permissioned accounts, weak access policies, and gaps in monitoring. Through real attack scenarios and lessons learned, attendees will discover best practices for hardening identity systems, leveraging Entra ID Governance, and automating access lifecycle management to prevent compromise and maintain compliance
Misconfigurations and overlooked vulnerabilities in identity systems remain a leading cause of breaches and compliance failures.
What the session covers:
- The most common identity security mistakes in Microsoft Entra ID
- Real-world attack scenarios and how they exploit misconfigurations
- Best practices for hardening identity systems
- Leveraging Entra ID Governance for access lifecycle management
- Tools and automation for continuous monitoring and compliance
Key Takeaways:
- Recognize and remediate common identity security gaps
- Implement effective governance and access controls
- Strengthen your organization’s identity security posture
Microsoft MVP: M365 + Security | Blogger | Podcaster | Speaker | Founder - YMD