How to secure Azure Active Directory Service Principal?
Question
Is there a way to detect and monitor that a service principal is only being used from a specific set of IP addresses? I do not want to IP restrict my entire directory. I have premium AAD and I think it has features that I might be able to utilized but I cannot do much testing. I'm currently struggling on how to detect if a SP has been jeopardized and how to prevent it.
1 answers
solution1
0 2018-09-19 01:10:43
If you want to use IP as conditions for the user to sign-in, you could use Conditional Access to make it. But the Conditional Access is used for the entire tenant.
And the features of Azure Active Directory Premium includes:
- Company branding
- Group-based application access
- Self-service password reset
- Self-service group management
- Advanced security reports and alerts
- Multi-Factor Authentication
- Forefront Identity Manager (FIM)
- Enterprise SLA of 99.9%
For the details, please read here .
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.