It's unfortunate that Chromium decided to remove token binding years ago
before token theft attacks became popular. Intent to Remove: Token
Binding (google.com) I hope Microsoft will enable this feature again for
Edge.
Some password spray attacks could maybe be avoided or at least
mitigated, if Microsoft authentication services would behave differently
in some regards: Conditional access validated prior to password ·
Community (azure.com)
Hi @ModernPractice -- The licensing scenarios above cover the Microsoft
Entra products in question. Other Microsoft products and services may
have similar or different licensing requirements. Thanks-- Steve
Hi @Ashish__Jain and @Abdi_Saeedabadi , We are trying to access Azure
managed services with Microsoft Entra Private Access. However, we are
not getting it to work.Are there some more detailed instructions
available on how to configure this use case? We want to avoid the use of
private endpoints sinc...
Hi, I am trying to move fully to passkeys which is going great on a few
small exceptions. One is that the Azure App on Android does not have the
other login options (besides Github) to login. Through the web I could.
Is there any overview or timeline on this support to see where we are at
before we ...
Latest Comments