Upcoming Webinar:
AppGov Preventive Maintenance Webinar Series - Season 3. Episode 4

Privilege Escalation in Microsoft
Entra ID: Risks, Exploits, and Solutions

📅 Wednesday, April 23 2025
🕰️ 1:00 PM - 2:00 PM ET
🌐 Microsoft Teams Webinar

Webinar Details

Microsoft Entra ID is central to securing access in Microsoft 365 and Azure, but recent findings reveal vulnerabilities that could let attackers escalate privileges to global admin. This webinar explores how attackers exploit OAuth 2.0 flows, service principal credentials, and misconfigurations to gain unauthorized access.

Learn how to identify and mitigate these threats with real-world examples, and discover practical strategies such as enforcing least privilege, hardening service principals, and strengthening Conditional Access. Stay ahead of evolving risks and secure your Entra ID environment.

Key Takeaways: 

  • Understand the technical details behind privilege escalation vulnerabilities in Microsoft Entra ID.
  • Learn how attackers exploit authentication flows and service principal permissions.
  • Discover best practices for securing your Entra ID environment against unauthorized privilege elevation.

 
Is the webinar free?
Yes, our webinars are free! The AppGov Community resources are put together by the team at ENow Software with Microsoft MVPs and subject-matter experts to ensure we can offer the most valuable information and updates to make your job easier. Application Governance is a newer problem that many organizations are just now starting to uncover - our goal is to help you on that journey.
I'm not sure I can attend - will I receive the recording?
Yes! We understand this time won't suit everyone's schedule, and we're a global community (Alistair & Nicolas are based in South Africa!). Everyone who registers for the webinar will receive the recording and slide deck (usually within 48 hours of the live event).
I already have topical questions. Can I send them somewhere to ensure they're answered on the webinar?
Absolutely - we love receiving questions from the community! You can send them over to ProductInfo@enowsoftware.com

We'll make sure the speakers get them ahead of time so they can answer your questions live or reach out separately for more info.

What Do Our Attendees Say?

ENow Webinar Comments (1)-1

Meet the Speakers:

Alistair Pugin

Alistair Pugin

M365 + Security MVP | Blogger | Podcaster | Speaker | Founder, CEO - YModernize

Alistair has worked in various capacities in multiple verticals from retail-manufacturing to government, spanning 50 to 50000 users utilizing all aspects of pure Enterprise Information Management.

Specialties: 20+ years pure IT, 16 years ECM, Livelink, Zylab, SharePoint, FileNet, etc. IT Pro dabbling in Dev, ECM Consultant, Suffering from Technophilia. Technology Architect specializing in Business Productivity Enrichment.

Connect on LinkedIn

Nicolas_Blank

Nicolas Blank

Founder, Group CEO, Architect, Podcaster, Author, MVP Office Apps & Services, MVP Azure, MCM & MCSM Messaging at NBConsult

Nicolas is the founder, as well as an architect, author, and speaker focused on Office 365 and Azure at NBConsult Group in South Africa, England, and Hong Kong. Nicolas is a Microsoft Certified Master for Exchange and Office 365, Microsoft MVP for Microsoft Office Apps and Services since March 2007.

Nicolas has co-authored the Microsoft Zero Trust Adoption Framework, published by Microsoft; “Microsoft Exchange Server 2013: Design, Deploy and Deliver an Enterprise Messaging Solution”, published by Sybex and available on Amazon; as well as authoring “Azure Site Recovery: IaaS Migration and Disaster Recovery,” published by Pluralsight.

Connect On LinkedIn