Privileged Azure Entra user is synced from on-premises AD

azure.compute
이 페이지는 아직 영어로 제공되지 않습니다. 번역 작업 중입니다.
현재 번역 프로젝트에 대한 질문이나 피드백이 있으신 경우 언제든지 연락주시기 바랍니다.

Description

Synced accounts, especially those with high privilege levels, are often targeted by attackers and can be used to extend the impact of a breach. This check identifies highly privileged accounts synced to Microsoft Entra ID from on-premises Active Directory.

Remediation

  1. Review the access level of all synced accounts in your tenant.
  2. Exclude all possible privileged accounts from the sync process.
  3. Accounts that require both privileges to on-premises Active Directory and Microsoft Entra ID should be closely scrutinized.
PREVIEWING: dgreen15/github-error-fix