Published
For slides go to: https://objectivebythesea.org/v5/talks.html
Talk Description:
Excessive authentication prompts are a bad experience for end users and are bad from a security perspective. To make matters worse, security teams frequently try to mitigate risk by invoking even MORE MFA prompts for the user to jump through. However, leveraging modern authentication protocols like OpenID Connect and Apple’s SSO extension framework, we were able to greatly cut down on authentication prompts without sacrificing security to access resources in Azure AD/M365.
In this talk, we’ll discuss how you can locate what is generating your excessive prompts in Azure AD, how the Enterprise SSO plug-in works under the hood, and how other apps can leverage this framework. Finally, we’ll take a look at additional passwordless authentication methods you can leverage today to further improve security and the end user experience.
Speakers Bio:
Michael Epping is a Senior Product Manager in the Azure AD Engineering team at Microsoft. He is part of the customer experience team and his role is to accelerate the adoption of cloud services across enterprise customers.
Michael helps customers deploy Azure AD features and capabilities via long-term engagements that can last years, as well as working within the engineering organization as an advocate on behalf of those customers. Michael has more than 9 years of experience working with customers to deploy Microsoft products like Azure AD, Intune, and Office 365. He's spoken at various industry events, such as BSides and The Experts Conference.
Mark Morowczynski (@markmorow) is a Principal Product Manager on the customer success team in the Microsoft Identity division. He spends most of his time working with customers on their deployments of Azure Active Directory. Previously he was Premier Field Engineer supporting Active Directory, Active Directory Federation Services and Windows Client performance.
He's spoken at various industry events such as Black Hat, Defcon Blue Team Village, Blue Team Con, GrayHat, several BSides, Microsoft Ignite, Microsoft Inspire, Microsoft MVP Summits, The Experts Conference (TEC), The Cloud Identity Summit, SANs Security Summits and TechMentor. He can be frequently found on Twitter as @markmorow arguing about baseball and making sometimes funny gifs.
Support the Objective-See Foundation:
https://www.objective-see.org/
https://twitter.com/objective_see
https://www.patreon.com/objective_see
Talk Description:
Excessive authentication prompts are a bad experience for end users and are bad from a security perspective. To make matters worse, security teams frequently try to mitigate risk by invoking even MORE MFA prompts for the user to jump through. However, leveraging modern authentication protocols like OpenID Connect and Apple’s SSO extension framework, we were able to greatly cut down on authentication prompts without sacrificing security to access resources in Azure AD/M365.
In this talk, we’ll discuss how you can locate what is generating your excessive prompts in Azure AD, how the Enterprise SSO plug-in works under the hood, and how other apps can leverage this framework. Finally, we’ll take a look at additional passwordless authentication methods you can leverage today to further improve security and the end user experience.
Speakers Bio:
Michael Epping is a Senior Product Manager in the Azure AD Engineering team at Microsoft. He is part of the customer experience team and his role is to accelerate the adoption of cloud services across enterprise customers.
Michael helps customers deploy Azure AD features and capabilities via long-term engagements that can last years, as well as working within the engineering organization as an advocate on behalf of those customers. Michael has more than 9 years of experience working with customers to deploy Microsoft products like Azure AD, Intune, and Office 365. He's spoken at various industry events, such as BSides and The Experts Conference.
Mark Morowczynski (@markmorow) is a Principal Product Manager on the customer success team in the Microsoft Identity division. He spends most of his time working with customers on their deployments of Azure Active Directory. Previously he was Premier Field Engineer supporting Active Directory, Active Directory Federation Services and Windows Client performance.
He's spoken at various industry events such as Black Hat, Defcon Blue Team Village, Blue Team Con, GrayHat, several BSides, Microsoft Ignite, Microsoft Inspire, Microsoft MVP Summits, The Experts Conference (TEC), The Cloud Identity Summit, SANs Security Summits and TechMentor. He can be frequently found on Twitter as @markmorow arguing about baseball and making sometimes funny gifs.
Support the Objective-See Foundation:
https://www.objective-see.org/
https://twitter.com/objective_see
https://www.patreon.com/objective_see
- Category
- Management
Be the first to comment
-
1:40:56
Improving Security, Usability, and Compliance With a Data Governance Framework
-
2:05:52
Spring Boot 3 + Spring Security 6 - JWT Authentication and Authorisation [NEW] [2023]
-
53:47
Improving Your Security Posture with Policy Enforcement and Governance
-
10:51
Authentication Governance Superbadge || Build Authentication Monitoring Reports #136 #10_04_2023
-
56:35
Building community resilience by reducing sewer overflows and improving flood management
-
29:29
Reducing Security Risks in the Hybrid Workplace with Windows 11 and Surface | OD101
-
1:01:52
Improving Security, Usability, and Compliance With a Data Governance Framework
-
00:56
Introduction to Authentication and Authorization for enterprise API security webinar
-
1:51:33
Virtual Seminar: Operations—Improving Collaboration & Reducing Risk (Part 2)
-
55:13
Reducing Burnout for Security Teams Recording 110222
-
03:29
Deca Roleplay Video - Lily Papadakis (Marshall) (Business Management)
-
00:20
motivational video for libasna ll inspiration for upsc aspirants ll #short #upse #amitabhbachchan
-
17:46
FreeStyle Libre 3 vs Dexcom G6 | Full Test & Review
-
09:59
Learn Communication Skills | English Speaking | Management Insight #7
-
1:43:58
How to Trade In Stocks By: Jesse Livermore. Complete Audiobook.
-
06:52
Three Questions to Ask Yourself To Be a Great Leader
-
07:35
find your unique style | Style Roots QUIZ + body types
