Azure Portal

Azure Portal or specific Azure services can be further protected through the use of the Knocknoc Entra back end.

This helps prevent or reduce ransomware and common Business Email Compromise (BEC) attacks and data theft/exfiltration through isolating user logins to specific IP addresses and permitted services only.

For example, Entra conditional access policies can require Knocknoc prior to accessing the Azure Portal, where it is common for malicious threat actors to register applications for persistent access and data exfiltration.

Therefore stolen refresh tokens or captured logins (including the MFA pass) are far less impactful to an organisations Azure and Office365 environment.