The Ultimate Guide for Protecting Hybrid Identities in Entra ID

Hybrid identities make administration easier and improve user experience. However, connecting the on-premises environment to the cloud makes identities prone to legacy attacks. Most of these attacks can be mitigated by carefully securing on-premises assets and properly configuring Entra ID.

In the cloud era, hackers don’t need to break in anymore, they just need to log in. This is the case in cloud-only identities, as the identity-related infrastructure is well protected from legacy attacks. However, in hybrid identity scenarios, the on-premises environment is still vulnerable to legacy attacks.

According to Microsoft Digital Defense Report 2024, 99% of identity-related attacks were performed against Entra ID. Less than one per cent of the attacks were against on-premises infrastructure, such as federation and synchronisation services. These attacks are typically performed by professional or nation-state-sponsored threat actor groups.

In this demo-packed session, I will show how to protect hybrid identities against these attacks. This includes securing on-premises assets as well as Entra ID hybrid identity configuration.