Conditional Access policies and encrypted documents
Reading time: 10 minutes I’m just trying to open a document that was sent to me. But Office now tells me: “User-account ‘a@b.com’ from identity provider ‘b.com’
Seamless B2B collaboration is crucial for most organizations these days. And Microsoft 365 offers a lot of (secure) options for this. But working securely and easily is not always as straightforward. As one organization recently discovered.
To be fair and upfront; the information in this article is also available from Microsoft Learn . It did take me some time to find this. Also, I’ve written an article earlier on the subject of Azure AD accounts and the new B2B Collaboration options which are described below.
What is the issue?
The focus of this article is on Microsoft Purview Information Protection (or Microsoft Azure Information Protection) and how encryption affects the end-user. The scenario is easy enough:
A user from organization X creates an Excel sheet. This sheet is labeled as “Highly confidential” and user-defined permissions are assigned. These permissions include a user from organization Y. Both organizations use Microsoft 365 and are therefore using Azure Active Directory. The document is stored in SharePoint Online and then shared with the user for organization Y (and also using email).
Open full article
https://alberthoitingh.com/2023/03/24/conditional-access-policies-and-encrypted-documents/
Conditional Access
Conditional Access policies are a set of rules that an organization puts in place to protect the security of its information. These rules can include user authentication, data encryption, and access control. Encrypted documents are documents that have been encrypted using a specific algorithm, making them unreadable to anyone other than the intended recipient. Encryption is an important part of any security strategy and is used to protect sensitive data from unauthorized access. With Conditional Access policies, organizations can ensure that only authorized personnel have access to the encrypted documents, and that the documents cannot be accessed without the proper authorization.
More links on about Microsoft 365
Feb 27, 2023 — Conditional Access policies at their simplest are if-then statements, if a user wants to access a resource, then they must complete an action.
Apr 22, 2020 — Conditional Access policies allow you to control not only whether a user can access a service and through which protocols, but also what ...
Dec 5, 2017 — Azure Conditional Access policies can be used with Azure Information Protection (AIP) to secure protected documents against unauthorized access.
Conditional Access Policies allow IT to define and enforce policies before users are granted access to different systems. It doesn't have to be one size fits ...