Fortifying Identity: Protecting Tokens in Microsoft Entra ID (Part2)
Authentication tokens are vital to modern identity—but also prime targets for attackers. Join Ravanty and Microsoft to learn how Microsoft Entra ID token protection capabilities can help.
Overview:
Authentication tokens are a cornerstone of modern identity systems, but they are also a high-value target for attackers. Traditional defenses often fail once a token is compromised, enabling adversaries to bypass MFA and move laterally across systems. Microsoft Entra ID introduces enhanced token protection capabilities, including proof-of-possession (PoP), continuous access evaluation, and Conditional Access token enforcement, to reduce risks from token replay and theft.
What you will learn:
Join us to explore how Microsoft Entra ID protects tokens against advanced threats. In this session, you will learn how to:
-
-
- Understand the risks of token replay and misuse in identity systems.
- Apply Conditional Access policies with token protection for stronger enforcement.
- Implement proof-of-possession tokens to mitigate replay attacks.
- Leverage continuous access evaluation for near real-time revocation and enforcement.
- Explore Microsoft Entra ID Protection for detecting and responding to identity risks.
- Understand the importance of Intune and device compliance, and how Conditional Access policies can enforce device compliance to further limit token replay on non-managed or non-compliant devices.
Speakers:
- Enrique Contreras - Senior Security Solution Engineer, Microsoft
- Ryan Ding - Senior Security Solution Engineer, Microsoft
- Yesai Tchouldjian - Chief Technology Officer, Ravanty
Watch Part 1
