Back to Documentation
Azure Active Directory
Azure Active Directory (Azure AD) is Microsoft's cloud-based identity and access management service.
Common Vulnerabilities
- Misconfigured Conditional Access Policies
- Weak Password Policies
- Overprivileged Service Principals
Attack Vectors
- Password Spraying
- Consent Grant Attacks
- Golden SAML Attack
Security Best Practices
- Implement Multi-Factor Authentication
- Use Privileged Identity Management
- Regularly Review and Audit Access Rights