Privileged Azure Entra user is synced from on-premises AD

Cette page n'est pas encore disponible en français, sa traduction est en cours.
Si vous avez des questions ou des retours sur notre projet de traduction actuel, n'hésitez pas à nous contacter.

Description

Synced accounts, especially those with high privilege levels, are often targeted by attackers and can be used to extend the impact of a breach. This check identifies highly privileged accounts synced to Microsoft Entra ID from on-premises Active Directory.

Remediation

  1. Review the access level of all synced accounts in your tenant.
  2. Exclude all possible privileged accounts from the sync process.
  3. Accounts that require both privileges to on-premises Active Directory and Microsoft Entra ID should be closely scrutinized.
PREVIEWING: Cyril-Bouchiat/add-vm-package-explorer-doc