CMMC Intune Compliance for iPhone and Android in 2026
A phone that touches CUI stops being “just a phone.” It becomes an endpoint, an access path, and an audit item. When I build CMMC Intune compliance for defense contractors,…
CMMC Level 2 Microsoft Sentinel Setup for Small Contractors
If I’m building a Microsoft Sentinel CMMC monitoring plan for a small federal contractor, I start with one hard truth: Sentinel can support a CMMC Level 2 program, but it…
CMMC Level 2 Windows LAPS Setup Guide for Small Contractors
Shared local admin passwords are a gift to attackers. For small contractors working toward CMMC Level 2, they also create a clear gap in least privilege and audit trails. In…
CMMC Level 2 Password and Lockout Policy in Microsoft 365, exact settings, common fails, and evidence screenshots
Passwords are still the front door key for most Microsoft 365 tenants. In a CMMC Level 2 assessment, that key has to be strong, monitored, and backed by proof. I…
CMMC Level 2 Remote Access Controls Using Entra ID and VPN: A Practical Guide
Remote access is where good security programs get messy. One “temporary” exception turns into a permanent hole, then an assessor asks you to prove you monitor and control every session.…
CMMC Level 2 System Boundary Diagram Template (Microsoft 365, endpoints, and any on-prem), with an example you can copy
If you’re preparing for CMMC Level 2, your CMMC system boundary diagram is one of the fastest ways to show assessors you control where CUI lives, how it moves, and…
CMMC Level 2 Break-Glass Accounts for Microsoft 365, a 2-account setup, storage rules, and evidence to capture
If you’ve ever locked yourself out of a Microsoft 365 tenant, you already understand the problem. When Conditional Access, MFA, or identity providers misbehave, you need a way back in.…
CMMC Level 2 Asset Inventory Template Using Intune and Entra ID Implementation Guide
If you’re aiming for CMMC Level 2, your CMMC asset inventory can’t live in someone’s head or a stale spreadsheet. Assessors want proof that you know what’s in scope, who…
CMMC Level 2 Asset Inventory for Small Contractors (template, what counts as an asset, and how to keep it current)
If you’re a small DoD contractor, your CMMC asset inventory can feel like one more spreadsheet to babysit. But for Level 2, it’s not “nice to have.” It’s a basic…
CMMC Level 2 Entra PIM Setup For Admin Roles 2026 Guide
Standing admin access is like leaving the master keys on the front counter. Most days nothing happens. Then one bad password reset, one phish, or one stolen session cookie turns…