Let’s discuss the 11 New Identity Secure Score Recommendations in Microsoft Entra. As you all know, cybersecurity is an important concern these days, and we must ensure the security of our organizations. Microsoft is committed to maintaining the security of its users.
Microsoft has introduced new identity Secure Score recommendations to address cyber security threats. You know Microsoft Entra introduced the Recommendation feature in 2024. Microsoft Entra recommendations are helpful for Microsoft Entra ID to improve the organization’s security and settings.
These recommendations are just like suggestions or tips to show you how to use Microsoft Entra features in the best way. Microsoft Entra provides helpful advice aimed at enhancing the security, performance, and setup of your environment. These recommendations are based on best practices, industry standards, and your specific configuration.
These recommendations act as a guide to help you secure your Microsoft Entra ID by providing the best tips. You know launch of Microsoft Entra recommendations, 11 new Identity Secure Score recommendations are now available to the public preview. These are very helpful to the Entra ID security Measurements.
Table of Contents
What are the Benefits of Secure Score Recommendations?
MS introduced new secure score recommendations that provide several key benefits for organizations. This will ensure the security by reducing the cyberthreats. Each recommendation offers clear, actionable steps to prevent the cyber threats.
11 New Identity Secure Score Recommendations in Microsoft Entra
Above, we discussed new secure Score recommendations that are now generally available in Entra. Microsoft Entra provides Identity Secure Score recommendations to enhance your organization’s security. You can check the recommendation in Entra is very easy. For that first navigate through MS Entra with your Credentials.
- Navigate through the Identity > Overview > Recommendations.
- Go to the recommendation homepage.
- At the top of the search bar, select the “Security Recommendations” filter to access the recommendations. (Filter by Category and select Identity Secure Score.)
| Latest Identity Secure Score Recommendations | Details |
|---|---|
| Require MFA for administrative roles | It protects high-privilege accounts with multi-factor authentication to prevent compromise. |
| Ensure all users can complete MFA | Implement MFA for all users to enhance security and protect devices and data. |
| Enable policy to block legacy authentication | Block older protocols that don’t support MFA and are vulnerable to attacks. |
| Do not expire passwords | It allows you to Avoid forcing periodic password resets, as they can lead to weaker passwords. |
| Protect users with a user risk policy | Use Microsoft Entra ID to detect compromised accounts and enforce automatic risk-based responses. |
| Protect users with a sign-in risk policy | Challenge suspicious sign-ins with MFA to enhance security. |
| Enable password hash sync if hybrid | Sync passwords between on-premises and cloud to reduce credential management and allow for leak reporting |
| Limit User Consent to Trusted Apps | Prevent users from granting consent to unverified or unreliable applications. |
| Use Least Privileged Admin Roles | It helps to assign the minimum necessary privileges to admins to reduce the risk of account breaches. |
| Designate More Than One Global Admin | It has multiple Global Admins for redundancy and emergency access. |
| Enable Self-Service Password Reset | It allows users to reset their own passwords, reducing reliance on helpdesk support. |
- Azure AD Graph APIs Retirement by February 1st 2025
- Top 50 Features of MS Entra AI-Driven Identity Security and the General Availability of Entra Suite and SSE Solution
- New Entra Custom Authentication Extension | Enable Integration with Any Email Providers
New Secure Score Trend Chart
The Secure Score Trend Chart is a visualization tool that helps organizations track their secure score over time. The secure score measures how well your organization’s security settings are configured. Also, you can access the secure score history data using the Tenant Secure Score API.
New Detailed List of User Entities
This new Detailed List of User Entities allows detailed list of user accounts, making it easy to check and take action on any affected users. It will give you clear information about the users, you can spot potential risks and ensure the right security steps are taken.
Need Further Assistance or Have Technical Questions?
Join the LinkedIn Page and Telegram group to get the latest step-by-step guides and news updates. Join our Meetup Page to participate in User group meetings. Also, Join the WhatsApp Community to get the latest news on Microsoft Technologies. We are there on Reddit as well.
Resource
New Identity Secure Score recommendations in General Availability
Author
Anoop C Nair has been Microsoft MVP for 10 consecutive years from 2015 onwards. He is a Workplace Solution Architect with more than 22+ years of experience in Workplace technologies. He is a Blogger, Speaker, and Local User Group Community leader. His primary focus is on Device Management technologies like SCCM and Intune. He writes about technologies like Intune, SCCM, Windows, Cloud PC, Windows, Entra, Microsoft Security, Career, etc.