CA-PowerToys is a set of tools to help you manage Conditional Access policies. It is a command line tool that can be used to export, import, and clean up Conditional Access policies and associated Groups, helping to implement a Policy-as-Code approach.

Tools to help implement Conditional Access Policies in Azure AD

This solution is designed for an Azure Runbook to assign users to two Entra ID (AzureAD) groups based on their MFA capability (capable / non-capable).

Sign-in a user with the Microsoft Identity Platform and call an ASP.NET web API that calls a downstream Web API with Conditional Access

Een leuk framework voor Conditional Access. In mijn Blogs kan je mijn beredenering volgen en een stukje instructie.🥰

You wonder how to manage your travelers ? In this scenario we describe how to manage them with Identity Governance and Conditional Access.

Contains Entra Related PowerShell Scripts and Entra Related KQL for Logs in Log Analytics

Sample on how to get Conditional Access Policies and Network Settings using API

Sample policies to implement a Zero Trust User Access strategy using Entra ID Conditional Access

An interactive powershell script for Azure/Entra. Creates a set of conditional access policies that will provide improved security over Microsoft's "Security Defaults". This script is primarily for less mature orgs that are perhaps still using Microsofts "Security Defaults" or only have very basic conditional access policies in place.

PowerShell security reporting framework for Microsoft 365 identity posture assessment. Analyzes Authentication Context, PIM, Conditional Access & more.

Deployment of Zero Trust, persona-based Azure AD Conditional Access Policies via Microsoft Graph, utilizing PowerShell.

Enterprise-grade Entra ID security automation - from zero to hardened in 3 phases

Read/Write files to Azure Blob storage with Managed Identity with RBAC - Provisioning automated with Bicep

This repository provides tools and scripts for managing access control in Microsoft Azure, including Azure Active Directory, RBAC, and Conditional Access policies, aimed at enhancing security and automation in Azure environments.

Enterprise-grade deployment framework for Maester - Automated Microsoft 365 security testing with compliance mapping, remediation engine, and multi-platform support (vSphere, Azure, AWS, GCP)

This project configures Entra Private Access to securely route traffic to an internal line-of-business (LOB) application without exposing it to the internet.

Ensuring secure Azure identity management with Conditional Access and MFA. Focused on enhancing security, compliance, and seamless user access.

This repository provides step-by-step guidance on configuring Single Sign-On (SSO) for SaaS applications using Microsoft Entra ID. It covers SAML, OAuth, and OpenID Connect authentication methods to streamline user access, enhance security, and enforce centralized authentication policies. The lab includes practical configurations, user assignments,