The CSP requirements for complience aren't being scored in Identity Secure Score.
If we have enabled the Baseline Policy Require MFA for Admins and End User Protection the score remains the same. Only MFA Per User is being scored. This is a little strange because, in reality, all of our users have MFA configured to their accounts.3 votes
Securecore does not tell you which accounts are not used in the last 30 days, and there is no way to find out. It only says "You have XX accounts that have not been used in the last 30 days."
Please include an easy way to show which accounts are not used. The suggested Powershell script does not do the job correctly, and is not very userfriendly.
Ideally, i would like a notification if a useraccount has been unused for xx days.2 votes
Secure score will let you know that 10 or 15 privilege accounts doesn't have MFA without listing these accounts. You have to do a lot of manual work to get these accounts especially Microsoft changes the definition of Privilege accounts and groups.
Need a clear list to fix.2 votes
points for the new security defaults settings should be added after switching on into secure score.
Why? As soon as i deleted the settings of the baseline policies under CA, i lost points within secure score and after switching on security defaults no points were added.
- Don't see your idea?