Windows 365 is managed through the Microsoft Intune portal and often times by different administrators.

This means that we need to tread carefully when assigning administrative roles.
In this session we will dig into how we could think differently while handing out permissions to make sure we allow just enough access (JEA) and just in time (JIT) to make sure each admin gets what is needed and not more.

We will investigate technologies such as:
* Conditional access
* PIM
* Entitlement management
* Passwordless
* Scope tags
* Custom Intune RBAC roles