Enhance Token Security with Microsoft Entra and Microsoft Intune

When an attacker steals a user’s token after a successful login, they gain the ability to impersonate the user and access protected resources without requiring a re-login. This method is becoming more commonly used to bypass security measures like Multi-Factor Authentication (MFA). This blog post presents some easy to implement…

06/01/2025 Article Bloggers Oliver Müller

Share:

You may be interested in

Microsoft Entra Connect: Migration to Application Based Authentication (ABA)
With the introduction of Application Based Authentication (ABA), Microsoft is bringing modern authentication mechanisms to Microsoft Entra Connect. Previously, the synchronization service authenticated using a service account with a locally…
05/08/2025
Microsoft Entra ID Protection: Protect Identities, Detect Risks and Mitigate Threats
In today’s digital world, protecting our identity is crucial. The threats we face online are becoming increasingly sophisticated and refined, making the security of our identity a central challenge. Microsoft…
02/12/2024
Microsoft Entra ID: Admin Consent Workflow for Secure Application Permissions
The Admin Consent Workflow in Microsoft Entra ID is a feature designed to manage user consent for enterprise application permissions. It allows administrators to review, approve, or deny permission requests…
02/06/2025
Microsoft Entra ID: QR Code Sign-In (Public Preview)
Microsoft Entra offers an innovative solution for fast and secure access: sign-in with QR code. This method simplifies the sign-in process while ensuring a high level of security. QR code…
04/03/2025
Microsoft Defender Attack Simulation Training: Boosting Real-World Security Awareness
Phishing, malware, and social engineering remain among the most common entry points for cyberattacks. While technical safeguards play a crucial role in strengthening overall security, the human factor often remains…
02/07/2025
Windows Hello for Business: Enhanced Security with Multi-Factor Unlock
In today’s digital world, security is more important than ever. Passwords alone no longer provide sufficient protection against data loss and unauthorized access. This is where Windows Hello for Business…
01/10/2024
Create proximity placement groups in Azure
Low network latency between virtual machines generally contributes to optimized performance. The proximity placement group feature in Azure ensures that virtual machines within the same proximity placement group are physically…
19/08/2023
Migrate legacy MFA and legacy SSPR policies to the authentication methods in Microsoft Entra ID
Microsoft recently announced that the legacy policies for Multi-Factor Authentication (MFA) and Self-Service Password Reset (SSPR) will no longer be supported after September 30, 2025. We need to migrate the…
04/06/2024
Hardening your Identities: Microsoft Authenticator device-bound passkey
A device-bound passkey is an advanced security feature implemented in Microsoft Authenticator. It is a unique security key that is tied to a specific device. When a user logs in…
01/05/2024
Protect Security Info Registration with Microsoft Entra Conditional Access and Microsoft Entra ID Protection
Registration of security information such as the Microsoft Authenticator app, FIDO2 security keys or OATH tokens is a critical component of modern identity security. To protect this sensitive process, Microsoft…
02/09/2025
Enhance Security with Microsoft Entra Protected Actions and Conditional Access
Microsoft Entra Protected Actions safeguard highly sensitive administrative operations in Microsoft Entra by requiring an additional layer of authentication. When a user attempts to perform such an action, they must…
07/04/2025
Microsoft Defender for Identity: Getting Started
Microsoft Defender for Identity (MDI) secures the on-premises Active Directory (AD) against identity threats as a cloud-based security solution. By thoroughly analyzing user activities and detecting complex attack vectors, Microsoft…
04/02/2025