Merge pull request #271231 from JnHs/jh-mobile-entrarisk

add Identity Protection section

Author: v-shils

articles/azure-portal/mobile-app/microsoft-entra-id.md

@@ -1,7 +1,7 @@
 ---
 title: Use Microsoft Entra ID with the Azure mobile app
 description: Use the Azure mobile app to manage users and groups with Microsoft Entra ID.
-ms.date: 03/08/2024
+ms.date: 04/04/2024
 ms.topic: conceptual
 ---
 
@@ -12,7 +12,7 @@ The Azure mobile app provides access to Microsoft Entra ID. You can perform task
 To access Microsoft Entra ID, open the Azure mobile app and sign in with your Azure account. From **Home**, scroll down to select the **Microsoft Entra ID** card.
 
 > [!NOTE]
-> Your account must have the appropriate permissions in order to perform these tasks. For example, to invite a user to your tenant, you must have a role that includes this permission, such as [Guest Inviter](/entra/identity/role-based-access-control/permissions-reference) role or [User Administrator](/entra/identity/role-based-access-control/permissions-reference).
+> Your account must have the appropriate permissions in order to perform these tasks. For example, to invite a user to your tenant, you must have a role that includes this permission, such as [Guest Inviter](/entra/identity/role-based-access-control/permissions-reference) or [User Administrator](/entra/identity/role-based-access-control/permissions-reference).
 
 ## Invite a user to the tenant
 
@@ -30,8 +30,8 @@ To add one or more users to a group from the Azure mobile app:
 1. Search or scroll to find the desired group, then tap to select it.
 1. On the **Members** card, select **See All**. The current list of members is displayed.
 1. Select the **+** icon in the top right corner.
-1. Search or scroll to find users you want to add to the group, then select the user(s) by tapping the circle next to their name.
-1. Select **Add** in the top right corner to add the selected users(s) to the group.
+1. Search or scroll to find users you want to add to the group, then select one or more users by tapping the circle next to their name.
+1. Select **Add** in the top right corner to add the selected users to the group.
 
 ## Add group memberships for a specified user
 
@@ -40,20 +40,46 @@ You can also add a single user to one or more groups in the **Users** section of
 1. In **Microsoft Entra ID**, select **Users**, then search or scroll to find and select the desired user.
 1. On the **Groups** card, select **See All** to display all current group memberships for that user.
 1. Select the **+** icon in the top right corner.
-1. Search or scroll to find groups to which this user should be added, then select the group(s) by tapping the circle next to the group name.
-1. Select **Add** in the top right corner to add the user to the selected group(s).
+1. Search or scroll to find groups to which this user should be added, then select one or more groups by tapping the circle next to the group name.
+1. Select **Add** in the top right corner to add the user to the selected groups.
 
 ## Manage authentication methods or reset password for a user
 
-To [manage authentication methods](/entra/identity/authentication/concept-authentication-methods-manage) or [reset a user's password](/entra/fundamentals/users-reset-password-azure-portal), you need to do the following steps:
+To [manage authentication methods](/entra/identity/authentication/concept-authentication-methods-manage) or [reset a user's password](/entra/fundamentals/users-reset-password-azure-portal):
 
 1. In **Microsoft Entra ID**, select **Users**, then search or scroll to find and select the desired user.
 1. On the **Authentication methods** card, select **Manage**.
-1. Select **Reset password** to assign a temporary password to the user, or **Authentication methods** to manage to Tap on the desired user, then tap on “Reset password” or “Authentication methods” based on your permissions.
+1. Select **Reset password** to assign a temporary password to the user, or **Authentication methods** to manage authentication methods for self-service password reset.
 
 > [!NOTE]
 > You won't see the **Authentication methods** card if you don't have the appropriate permissions to manage authentication methods and/or password changes for a user.
 
+## Investigate risky users and sign-ins
+
+[Microsoft Entra ID Protection](/entra/id-protection/overview-identity-protection) provides organizations with reporting they can use to [investigate identity risks in their environment](/entra/id-protection/howto-identity-protection-investigate-risk).
+
+If you have the [necessary permissions and license](/entra/id-protection/overview-identity-protection#required-roles), you'll see details in the **Risky users** and **Risky sign-ins** sections within **Microsoft Entra ID**. You can open these sections to view more information and perform some management tasks.
+
+### Manage risky users
+
+1. In **Microsoft Entra ID**, scroll down to the **Security** card and then select **Risky users**.
+1. Search or scroll to find and select a specific risky user.
+1. Review basic information for this user, a list of their risky sign-ins, and their risk history.
+1. To [take action on the user](/entra/id-protection/howto-identity-protection-investigate-risk), select the three dots near the top of the screen. You can:
+
+   * Reset the user's password
+   * Confirm user compromise
+   * Dismiss user risk
+   * Block the user from signing in (or unblock, if previously blocked)
+
+### Monitor risky sign-ins
+
+1. In **Microsoft Entra ID**, scroll down to the **Security** card and then select **Risky sign-ins**. It may take a minute or two for the list of all risky sign-ins to load.
+
+1. Search or scroll to find and select a specific risky sign-in.
+
+1. Review details about the risky sign-in.
+
 ## Activate Privileged Identity Management (PIM) roles
 
 If you have been made eligible for an administrative role through Microsoft Entra Privileged Identity Management (PIM), you must activate the role assignment when you need to perform privileged actions. This activation can be done from within the Azure mobile app.