Written by Ravanty | Nov 11, 2025 10:25:07 PM
Overview:
Authentication tokens are a cornerstone of modern identity systems, but they are also a high-value target for attackers. Traditional defenses often fail once a token is compromised, enabling adversaries to bypass MFA and move laterally across systems. Microsoft Entra ID introduces enhanced token protection capabilities, including proof-of-possession (PoP), continuous access evaluation, and Conditional Access token enforcement, to reduce risks from token replay and theft.
What you will learn:
Join us to explore how Microsoft Entra ID protects tokens against advanced threats. In this session, you will learn how to:
-
-
- Understand the risks of token replay and misuse in identity systems.
- Apply Conditional Access policies with token protection for stronger enforcement.
- Implement proof-of-possession tokens to mitigate replay attacks.
- Leverage continuous access evaluation for near real-time revocation and enforcement.
- Explore Microsoft Entra ID Protection for detecting and responding to identity risks.
- Understand the importance of Intune and device compliance, and how Conditional Access policies can enforce device compliance to further limit token replay on non-managed or non-compliant devices.
Speakers:
- Enrique Contreras - Senior Security Solution Engineer, Microsoft
- Ryan Ding - Senior Security Solution Engineer, Microsoft
- Yesai Tchouldjian - Chief Technology Officer, Ravanty
Watch Part 1