Skip to main content

4-Week Zero Trust Implementation for Identity

Infused Innovations Inc.

Work towards a password-less environment by integrating third-party services with Azure SSO, enabling biometric authentication on known devices, and setting up MFA with Conditional Access.

Infused Innovations will perform the following tasks as part of this accelerator:

Identity & Access Management

  • Deploy or validate Azure AD Connect for a single Active Directory Domain
  • Enable modern authentication for a single Office 365 tenant
  • License and provision users in a single Office 365 tenant
  • Configure AAD P1 and EM+S licensed users for Self Service Password Reset
  • Configure sync of all supported modern workstations in a single AD Domain
  • Enable seamless SSO via Group Policy or Intune
  • Create a custom banned password list
  • Configure Company Branding
  • Create Azure AD groups to use for targeting policy configurations
  • Create a Cybersecurity Microsoft Teams site for dynamic Power BI reports

    Conditional Access and MFA

  • Provide a one-hour workshop to review suggested baseline configurations

  • Enforce MFA for current global admins
  • Configure automated risk-based policies for Azure AD P2 users
  • Create a break glass policy
  • Provide a two-week pilot

    Office 365 ATP

  • Configure Anti-Phishing Policies

  • Configure Anti-Spoofing Policies
  • Configure Safe Links baseline
  • Configure Safe Attachments baseline
  • Configure Malware detection baseline

    Configure Email Authentication Protocols

  • Configure SPF Flattening if required

  • Configure DKIM records
  • Configure DMARC records with Valimail for DMARC monitoring
https://gallery.azure.com/artifact/20151001/infusedinnovationsinc.ztsa-identity.1.0.1/Artifacts/SampleImage/5ad2e7df-6dee-49c9-9179-87b095bb2879.png
https://gallery.azure.com/artifact/20151001/infusedinnovationsinc.ztsa-identity.1.0.1/Artifacts/SampleImage/5ad2e7df-6dee-49c9-9179-87b095bb2879.png