Azure Active directory basic properties setting through policy or blueprint

Azuretech 90 Reputation points
2023-04-20T05:45:23.59+00:00

I want to set the basic AD policies in My tenant as mentioned in this article (under Identities section) . example - some user setting attributes or MFA settings which should be "yes or No" https://hub.steampipe.io/mods/turbot/azure_compliance/controls/control.cis_v130_1_1?context=benchmark.cis_v130/benchmark.cis_v130_1 What is the best way to implement all the basic security settings, is it through policies or blueprint.

is it possible to use policies to set Azure ad properties - like User settings, device settings or we can only use Grapoh api and Powershell to update it? Please suggest the recommended one as we have multitanent env so we will use the approach in other tenant also.

Azure Blueprints
Azure Blueprints
An Azure service that provides templates for quick, repeatable creation of fully governed cloud subscriptions.
72 questions
Azure Policy
Azure Policy
An Azure service that is used to implement corporate governance and standards at scale for Azure resources.
952 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
23,005 questions
0 comments No comments
{count} votes

Accepted answer
  1. Stanislav Zhelyazkov 25,491 Reputation points MVP
    2023-04-20T13:13:17.3066667+00:00

    Hi, Azure Policy covers only Azure resources. Azure AD is separate service and not part of Azure services. So answer is no. To manage Azure AD use other tools like Azure AD PowerShell module or Microsoft Graph PowerShell module. Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    1 person found this answer helpful.
    0 comments No comments

0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.