From: Architecting Zero Trust: Crafting Baseline Conditional Access Policies with Intune
applicationbehavioural

How can I minimize user friction while implementing Conditional Access?

Minimizing user friction is key to successful adoption. This involves clear communication about the *why* behind the new security measures, comprehensive training, and providing easily accessible support. Design policies to be as unobtrusive as possible during low-risk activities, perhaps by allowing persistent sessions on compliant devices. Only prompt for additional verification when the risk context genuinely changes, such as accessing sensitive data from an unmanaged personal device or an unknown location.

Action

Communicate changes proactively to users. Provide FAQs, training sessions, and clear guides on how to use MFA and ensure device compliance. Establish a direct feedback channel for users to report policy-related issues.

Read the full exploration
What else is in this exploration
4 evidence blocks4 perspectives4 visualizations3 media resources8 rabbit holes
evidence
Conditional Access is the 'If-Then-Else' statement of Microsoft's identity security, evaluating a...
evidence
The 'Report-only' mode is crucial for testing Conditional Access policies and understanding their...
evidence
Baseline Conditional Access policies should typically enforce Multi-Factor Authentication (MFA) f...
Sign up to unlock
Continue exploring
Architecting Zero Trust: Crafting Baseline Conditional Access Policies with Intune
Evidence, perspectives, rabbit holes, and more