Microsoft Security – Best Practices for Cloud

Last Updated: July 27th, 2022Published On: May 16th, 2021By

Our Microsoft partner, SYNNEX, compiled the following guidelines established by Microsoft to ensure the highest level of security. Included below, they’ve provided security guidelines for the prevention of and response to security incidents and links to the related Microsoft articles for each recommended action.

Below are recommended best practices for use at all times. Follow these steps in this priority order.

  1. Use Identity Isolation to limit exposure of credentials
  2. Enable MFA on all user scenarios
  3. Store secrets in approved locations (ex: Key Vault)
  4. Enable auditing for access to important resources
  5. Use minimal required permission level
  6. Perform periodicity review of Activity Audit logs, checking for:

In the event of any suspected security incident, the following steps should be taken to ensure full security in the tenant. Follow these steps, in this order:

  1. Perform an inventory of all credentials (including keys and service principles).
  2. As a best practice and to prevent compromise, ensure MFA is enabled for all privileged user accounts. If MFA is already in use, expire all MFA tokens to force re-authentication.
  3. Review all constituents of the Admin Agent group and ensure there aren’t any accounts (users/service-principals) that should not be there.
  4. Perform an inventory of application registrations.
  5. Retire all refresh tokens used for API integration.
Categories: BlogTags: Views: 1334