Zero Trust Identity Management with Azure Entra and Conditional Access
DOI:
https://doi.org/10.63282/3050-9246.IJETCSIT-V6I4P127Keywords:
Zero Trust, Azure Entra ID, Conditional Access, Adaptive Authentication, Identity Governance, Microsoft Defender For Identity, Cloud Security, Risk-Based Access Control, Continuous Evaluation, Automation, MFA, Hybrid IdentityAbstract
The rapid expansion of hybrid and multi-cloud environments has rendered traditional perimeter-based security models obsolete. Identity has emerged as the new security boundary. Microsoft’s Azure Entra ID, combined with Conditional Access and Zero Trust principles, establishes an adaptive, context-aware identity management framework that secures access across users, devices, and applications. This paper explores the architecture, automation strategies, and policy frameworks of Zero Trust identity management in Azure. It highlights how AI-driven risk detection, continuous evaluation, and identity governance together enable secure, scalable, and compliant cloud operations. Through analysis of case scenarios, it demonstrates measurable improvements in security posture, compliance, and operational efficiency
Downloads
References
[1] Microsoft. (2024). Zero Trust Architecture in Microsoft Entra. [Online]. Available: https://learn.microsoft.com/azure/entra/
[2] Forrester. (2022). The Zero Trust eXtended Ecosystem. [Online].
[3] Lee, M., & Ahmed, R. (2021). “Identity-Centric Zero Trust in Cloud Security Architectures.” IEEE Transactions on Cloud Computing, 9(3), 511–523.
[4] Gartner. (2023). Adaptive Access Control for Cloud Environments. [Online].
[5] Microsoft. (2023). Identity Protection in Azure Entra ID. [Online].
[6] Azure Architecture Center. (2024). Implementing Conditional Access in Zero Trust Models.
[7] Microsoft Entra Product Team. (2025). AI-Powered Identity Risk Management and Governance. [Online].
