Fabian Bader
Fabian Bader is a Cyber Security Architect and Microsoft MVP from Germany. He focuses on security and cloud solutions and works mainly with Microsoft technologies.
From Azure cloud to on-premises Active Directory, he likes to automate stuff with PowerShell.
Besides being a speaker at community events, he blogs at "cloudbrothers.info", hosts the "Elbe Security User Group", "Hamburg PowerShell User Group" and is part of the organizing team of "PowerShell Saturday Hamburg".
❤️ PowerShell and Security 🛡️
Session
Entra ID Conditional Access is the guard dog of your tenant. But to set it up in a secure way is quite complicated, even if you know all the processing details, which are not always documented.
In this talk we go from a bypass found by accident to a structured approach of mapping Entra ID applications and the different behavior of Conditional Access policies. We found corner cases in which some policies are not or cannot be applied, which can function as bypasses if attackers want to target your tenant.
Join us for a wild ride into authentication protocols, OAuth scopes and pre-consented permissions.
And of course, we don’t want to keep you in the dark about how to protect against some of those bypasses and what indicators to look out for.