You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/active-directory/fundamentals/3-secure-access-plan.md
+5-5Lines changed: 5 additions & 5 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -47,7 +47,7 @@ To group resources for access:
47
47
48
48
Document the applications to be grouped. Considerations include:
49
49
50
-
***Risk profile** - Asses the risk if a bad actor gains access to an application.
50
+
***Risk profile** - Assess the risk if a bad actor gains access to an application.
51
51
* Identify application as high, medium, or low risk. Avoid grouping high-risk with low-risk.
52
52
* Document applications that can't be shared with external users
53
53
***Compliance frameworks** - Determine compliance frameworks for apps
@@ -78,17 +78,17 @@ Learn more: [What is Conditional Access?](../conditional-access/overview.md)
78
78
79
79
**Resource risk-profile sign-in conditions**
80
80
81
-
Consider the follwing policies to trigger MFA.
81
+
Consider the following risk-based policies to trigger MFA.
82
82
83
83
***Low** - MFA for some application sets
84
84
***Medium** - MFA when other risks are present
85
85
***High** - External users always use MFA
86
86
87
87
Learn more:
88
88
89
-
*[Tutorial: Enforce multi-factor authentication for B2B guest users](../external-identities/b2b-tutorial-require-mfa.md).
89
+
*[Tutorial: Enforce multi-factor authentication for B2B guest users](../external-identities/b2b-tutorial-require-mfa.md)
90
90
* Trust MFA from external tenants
91
-
* See, [Configure cross-tenant access settings for B2B collaboration, Modify inbound access settings](../external-identities/cross-tenant-access-settings-b2b-collaboration.md#modify-inbound-access-settings).
91
+
* See, [Configure cross-tenant access settings for B2B collaboration, Modify inbound access settings](../external-identities/cross-tenant-access-settings-b2b-collaboration.md#modify-inbound-access-settings)
92
92
93
93
### User and device sign-in conditions
94
94
@@ -189,7 +189,7 @@ Items in bold are recommended.
189
189
| Microsoft 365 or Office 365 groups|N/A|**Access to group site(s) and associated content**|**Access to Microsoft 365 group teams and associated content**|N/A|
190
190
| Sensitivity labels|N/A| Manually classify and restrict access| Manually classify and restrict access| Manually classify to restrict and encrypt |
191
191
| Conditional Access policies| Conditional Access policies for access control|N/A|N/A|N/A|
192
-
|Additional methods|N/A| Restrict SharePoint site access with security groups<br>Disallow direct sharing|**Restrict external invitations from a team**|N/A|
192
+
|Other methods|N/A| Restrict SharePoint site access with security groups<br>Disallow direct sharing|**Restrict external invitations from a team**|N/A|
0 commit comments