Entra ID Cross-Tenant Access for CMMC Level 2
External collaboration is often the quietest hole in a CMMC boundary. A tenant-to-tenant trust that looks harmless can let weak identity assumptions cross into your environment. When I review Microsoft…
CMMC Level 2 Session Lock and Idle Timeout in Intune
An unlocked screen is one of the easiest audit failures to spot. If I’m mapping a CMMC session lock policy in Intune, I need more than a vague timeout setting.…
How I Set Up Intune Endpoint Privilege Management for CMMC Level 2
A laptop with standing local admin rights can undo months of CMMC prep in one bad install. When I deploy Intune endpoint privilege management for a Level 2 environment, I…
CMMC Level 2 Intune: Using Shared PC Mode the Right Way
A shared workstation can help your team, or it can wreck your audit trail. In a CMMC Level 2 Intune deployment, that difference usually comes down to identity, cleanup, and…
CMMC Level 2 DNS Filtering Checklist for Endpoints and Phones
One missed DNS setting can hand a phishing site a straight path to a managed device. For CMMC DNS filtering, I treat it as a practical control that lowers exposure…
A Practical CMMC Tabletop Template for Microsoft 365 Incidents
A generic tabletop won’t help me in a CMMC assessment or during a real Microsoft 365 incident. It also won’t help when an Entra ID admin starts approving MFA prompts…
CMMC Access Packages in Entra ID for Level 2 Readiness
Access control usually breaks in ordinary moments, new hires, rushed admin requests, outside contractors, and projects that never get cleaned up. When I review CMMC Level 2 gaps, those are…
Using Entra ID’s MFA Registration Campaign for CMMC Level 2
An MFA policy breaks the first time an employee has no second factor enrolled. I see that gap often when companies begin CMMC Level 2 work in Microsoft Entra ID.…
A Practical Power Apps Governance Checklist for CMMC Level 2 in Microsoft 365
A Power App can go from harmless helper to audit problem in a week. I see it happen when a team builds a quick form, connects it to live business…
CMMC Level 2 Lost Device Response Plan With Intune
Lose a laptop that handled CUI, and the clock starts before anyone finds the charger. When I build a CMMC lost device response plan, I focus on the first hour,…