Introducing Microsoft Global Secure Access - No More VPN's!

preview_player
Показать описание
Microsoft Global Secure Access means we can say goodbye to VPN's and add much more security to our Microsoft 365.

In this video we'll talk about how the security and network landscape has changed and I'll also give a full demo into Global Secure Access.

🆓 FREE Facebook Group
From security to productivity apps to getting the best value from your Microsoft 365 investment, join our Microsoft 365 Mastery Group

🆓 FREE Microsoft 365 Guide
Our FREE Guide - Discover 5 things in Microsoft 365 that will save your business time and money….. and one feature that increases your Cyber Security by 99.9%

💻 Want to Work Together?

😁 Follow on Socials
TikTok @bearded365guy
Instagram @bearded365guy

Chapters
00:00 Introduction
00:50 How Security Used to Work
02:02 How Everything Has Changed
03:13 Today's Network Problem
03:49 Secure Service Edge
04:16 Microsoft 365 SSE
05:07 Secure Service Edge Demo
05:28 Activate Service
05:49 Enabling Conditional Access
06:28 Traffic Forwarding Profiles
07:48 Install Client on Devices
09:05 Create Conditional Access Policy
11:50 Create Web Filtering Policy
14:14 Create Security Profile
15:33 Create Web Filtering Conditional Access
17:37 Monitoring Logs
  1. Jonathan Edwards
  2. microsoft entra
  3. security service edge
  4. zero trust network access
  5. microsoft entra private access
  6. microsoft entra internet access
Рекомендации по теме
Introducing Microsoft Global 0:18:33

Introducing Microsoft Global Secure Access - No More VPN's!

No more VPN? 0:07:27

No more VPN? What is Global Secure Access

Microsoft Entra Global 0:32:19

Microsoft Entra Global Secure Access Unveiled: The Future Beyond VPNs? | Peter Rising MVP

Microsoft Entra Private 0:16:03

Microsoft Entra Private Access Step by Step Tutorial and Demo using Zero Trust

What is Entra 0:21:56

What is Entra Global Secure Access?

Goodbye VPN! Hello 0:19:40

Goodbye VPN! Hello Microsoft Global Secure Access

S05E03 - Global 0:45:27

S05E03 - Global Secure Access (I.T)

Deep Dive on 1:01:08

Deep Dive on Microsoft Entra Private Access

Introduction to Data 1:00:28

Introduction to Data Lifecycle Management DLM - Compliance Manager - Part 1

A closer look 0:22:59

A closer look at Microsoft Entra Internet Access

Microsoft Entra Security 1:05:58

Microsoft Entra Security Service Edge Overview

Microsoft Entra Global 0:23:16

Microsoft Entra Global Secure Access Q&A with Thomas Detzner August 2023

Deep Dive on 0:48:45

Deep Dive on Microsoft Entra Internet Access

Microsoft Entra Internet 0:11:26

Microsoft Entra Internet Access and Conditional Access Step by Step Tutorial and Demo

Introducing Microsoft Entra 0:29:59

Introducing Microsoft Entra Internet Access

Techie introduction to 0:51:08

Techie introduction to Microsoft Entra Internet Access & Microsoft Entra Private Access

Introducing Microsoft Entra 0:01:29

Introducing Microsoft Entra

Introducing Microsoft Entra 0:59:59

Introducing Microsoft Entra Private Access + Ask Microsoft Anything

How to secure 0:02:08

How to secure access for your workforce with Microsoft Entra Suite

Microsoft Entra Expands 0:01:45

Microsoft Entra Expands into Security Service Edge with Two New Offerings

What is Security 0:06:36

What is Security Service Edge (SSE)? SASE vs SSE vs VPN

Microsoft Entra Takes 0:28:05

Microsoft Entra Takes It To The Next Level! | Peter Rising MVP

Microsoft Entra Private 0:10:46

Microsoft Entra Private Access & Risk Based Policies

Introduction to Microsoft’s 0:48:13

Introduction to Microsoft’s Security Service Edge for Identity-Centric Network Access

Комментарии
Автор

Dude - I'm so glad to have found your channel. No filler, just great explainers and demonstrations. Cheers!

MarkSadlier
Автор

Great info Jonathan!!! Just wondering whether this is a good solution, or should we focus on the Web Content Filtering delivered by Defender for Endpoint (using smart screen and network protection)? What's your input regarding this? I practically see this as a better solution when it comes to exclusions, because with the WCF from defender one device can be in one group only.

lachezarpopov
Автор

Oh yeah, GENIUS idea. Just give uncle ms ALL your traffic and trust them to secure you and keep your privacy..
Great

ehudv
Автор

Thank you so much for this video, it is very helpful and easy to understand. I have one quick question. In case the company want to block users from accessing social media, if the users want to bypass the block, can they just disconnect from the GSA client to access? Thank you in advance!

tranghienkhoa
Автор

Can this be deployed for Windows 365 CPCs and become Zscaler alternative?

RedNinja
Автор

Thanks Jonathan. This is cool. Exactly what we have all been needing. Great explanation.

adamcrawford
Автор

You mentioned your test VM was in InTune for the tenant. Is InTune enrollment required to run Global Secure Access on an endpoint device? Also, how long do you have to wait to see the "All Compliant Network Locations" show up in the locations list when you go to create the new Block policy? thx.

dondebolt
Автор

Great Info Jonathan. I see this GSA is no longer in 'Preview' and I would love to see a part 2 update.
also a dedicated intro to the VPN setup and config.

pchown
Автор

Thanks, Jonathan! Did I miss it or can you not have custom messages displayed to the policy subjects? To simply block the access to certain categories/ sites sans note that it violates the company policy will IMHO create more confusion and incidents/ SR’s.

taavisepp
Автор

Another great video Jonathan, many thanks. One question: is it dependant on devices being controlled via Intune?

johnwarde
Автор

My issue with any video like this is I'm left with no understanding of why this does what it does.

Ok, user tries to go to a blocked site... Is the magic done with DNS? Or does DNS resolve ok but routing tables prevent the connection? Or is there something else going on? If the user is using a non-Edge browser, does it still work? What path do the packets take? What source IP address does the website see?

peterholthoffman
Автор

Thank you and great video, can I skip installing the GlobalSecureAccessClient and still get conditional access and web filtering to work?

WhiteOSO
Автор

Hi Jonathan, you wouldn't believe how much your videos have been helping me. I'm curious, do you think this will limited use of SD-WAN?

vvgvvg-qezs
Автор

hi Jonathan, great vid, thanks. 16mins 55sec in you say it takes some time for the web content filter to apply. how long are we talking? minutes or hours?

gerkeogh
Автор

given Windows and Microsoft's rampant data collection, who in their right mind would use this?

SevereMkII
Автор

Hello Jonathan, thank you for this video. Can you please explain why you selected the BLOCK option at 10:16 in the video ? Also, is there an option to make all activity and traffic on your laptop use Microsoft Global Secure Access therefore keeping everything secure.

kb
Автор

Cracking video and a great insight. A bit put off by the generic blocked access error rather than a defined “Your company has restricted access to…” response. Is this available?

Majikal_Mike
Автор

This is awesome, thanks Jonathon! Any chance you could do a video on Entra Private Access and the way it works with allowing you to access on-prem resources such as file shares and private apps through the global secure access client?

mcgarnacle
Автор

It is an interesting concept of doing central policy management of the Windows firewall and/or hosts file via web interface. Perhaps, as you mentioned, welcome for smaller businesses, because we on the large enterprise already do this (using different tools) since before pandemic days. The main drawback I see is the reliance on one single source for everything: if Microsoft makes one accidental change, your entire business is locked out. That is why having different vendors for certain solutions - including on-premises - still helps keeping your business running.

Good recap of the tool, though. Kudos!

hquest
Автор

Great video - what prevents an unknown user (hacker) from installing the client themselves if they have the correct credentials?

jeffreybrodeur
visit shbcf.ru