šŸ”„ Check out my documented journey on how to set up Configuration Manager (MECM) and my updated notes on the Azure AZ-104 Exam! šŸ”„
Posts
Microsoft
MS-102
MS-102 Certification Notes
MS-102 Stormwind Studios Course Notes
MS-102: Microsoft 365 Administrator Day 8
8.17 Zero Trust

MS-102 Certification Notes

Day 8.17 - Zero Trust

Zero Trust

  • Zero Trust Principles
    • Verify Explicitly - always use all available data points to authenticate and authorize
    • Use least-privilege access - use Just in Time (JIT) and Just enough (JEA) risk based adaptive policies
    • Assume Breach - segment access to minimize attack radius. Verify encryption, use analytics and threat detection
  • Zero Trust Defense Areas
    • Identities - strong authentication
    • Endpoints - ensure compliance and device health before granting access
    • Apps - monitor activity including discovery of shadow IT
    • Data - classify and label data, encrypt and protect
    • Infrastructure - least privilege access always, monitor to detect attacks or anomalies
    • Network - devices on a network not automatically trusted. Employ threat detection solutions
8.16 - ManagementConfiguration Manager