AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |
Back to Blog
Exchange hybrid modern authentication9/12/2023 ![]() ![]() The eBook discusses the importance of assessing a potential MDR partner’s technology stack, expertise, and service offerings. ![]() ![]() The resource acknowledges the growing complexity of the threat landscape and the increasing demand for MDR services to help organizations navigate cybersecurity challenges. The eBook “Modern SOCs and MDR Services: How to Identify the Right Security Partner” by WatchGuard offers a comprehensive guide on selecting a suitable Managed Detection and Response (MDR) service provider to enhance the effectiveness of a Security Operations Center (SOC). Once HMA is configured, our environment can begin to leverage AAD security capabilities like two-factor authentication, or Intune Modern Application Management policies such as conditional access.How to Identify the Right Security Partner? When access tokens expire the client will simply use its refresh token to renew access tokens. The default expiry time for a refresh token is 90 days while an access token has a 1 hour validity. Once the tokens are issued, there is no need for the client to get authenticated again until the refresh token expires. Hence our environment is already configured with AADConnect and ADFS with Skype for Business on-premise hybrid split-domain. To obtain these tokens in HMA, the client must first be authenticated via an on-premise Active Directory with ADFS. During the login process, Skype for Business clients will obtain Access and Refresh Oauth tokens from an Azure AD service known as evoSTS that on-premises Skype for Business and Exchange servers will accept and grant access. Modern Authentication is based on the open standard oAuth protocol and implemented in Microsoft software and services via ADAL. Firstly, HMA is an new authentication and authorization protocol that was first available on Office365 and now extended to Skype for Business hybrid split domain and Exchange hybrid environments. Here in this blog post I just want to summarize the key points. Much of the basics of what HMA is very well explained in this Microsoft article. What is Hybrid Modern Authentication (HMA) and why should you use it? ![]()
0 Comments
Read More
Leave a Reply. |