Skip to content

Commit 73a367a

Browse files
MicrosoftGuyJFloMicrosoftGuyJFlo
committed
updates
1 parent 079f82d commit 73a367a

File tree

1 file changed

+3
-5
lines changed

1 file changed

+3
-5
lines changed

articles/active-directory/conditional-access/baseline-protection.md

Lines changed: 3 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,5 @@
11
---
2-
title: What is a baseline protection in Azure Active Directory conditional access? - preview | Microsoft Docs
2+
title: What is a baseline protection in Azure Active Directory conditional access? | Microsoft Docs
33
description: Learn how baseline protection ensures that you have at least the baseline level of security enabled in your Azure Active Directory environment.
44
services: active-directory
55
keywords: conditional access to apps, conditional access with Azure AD, secure access to company resources, conditional access policies
@@ -21,13 +21,11 @@ ms.reviewer: nigu
2121

2222
ms.collection: M365-identity-device-management
2323
---
24-
# What is baseline protection (preview)?
24+
# What is baseline protection?
2525

2626
In the last year, identity attacks have increased by 300%. To protect your environment from the ever-increasing attacks, Azure Active Directory (Azure AD) introduces a new feature called baseline protection. Baseline protection is a set of predefined [conditional access policies](../active-directory-conditional-access-azure-portal.md). The goal of these policies is to ensure that you have at least the baseline level of security enabled in all editions of Azure AD.
2727

2828
This article provides you with an overview of baseline protection in Azure Active Directory.
29-
30-
3129

3230
## Require MFA for admins
3331

@@ -49,7 +47,7 @@ Users with access to privileged accounts have unrestricted access to your enviro
4947
This baseline policy provides you with the option to exclude users. You might want to exclude one *[emergency-access administrative account](../users-groups-roles/directory-emergency-access.md)* to ensure you are not locked out of the tenant.
5048

5149

52-
## Enable a baseline policy
50+
## Enable a baseline policy
5351

5452
While baseline policies are in preview, they are by default not activated. You need to manually enable a policy if you want to activate it. If you explicitly enable the baseline policies at the preview stage, they will remain active when this feature reaches general availability. The planned behavior change is the reason why, in addition to activate and deactivate, you have a third option to set the state of a policy: **Automatically enable policy in the future**. By selecting this option, you can leave the policies disabled during preview, but have Microsoft enable them automatically when this feature reaches general availability. If you do not explicitly enable baseline policies now, and do not select the **Automatically enable policy in the future** option, the policies will remain disabled when this feature reaches general availability.
5553

0 commit comments

Comments
 (0)