In the world of Microsoft Entra and M365, privileged accounts are the managers, and the Global Administrator holds the master key to your entire kingdom. You’d expect these accounts to be protected from any compromise, yet in real environments they’re often exposed by weak processes, misconfigurations, and a false sense of security.

You Are Admin’ing Wrong! is an advanced (Level 300) deep‑dive into real‑world security missteps I’ve seen first‑hand while working with customers as a consultant. Too often, privileged accounts in Entra are wide open to theft or misuse. Sometimes through simple oversights, sometimes through risky shortcuts.

In this session, I’ll dissect some of the most common gaps, including:

- Missing or untested break‑glass accounts
- No Privileged Access Workstations (PAWs)
- Poorly scoped Conditional Access rules
- Role‑based access control blind spots
- Stale privileged identities
- MFA setups that look secure, but aren’t

By the end you’ll know exactly what to check, and how, so you can avoid some of the most common admin mistakes out there.

Elevator pitch: "Privileged accounts in Entra and M365 are the crown jewels, but too often, they’re left exposed by weak processes, risky shortcuts, and false confidence. In You Are Admin’ing Wrong!, I’ll unpack some of the most common real‑world missteps I’ve seen as a consultant and show exactly what to check, and how, to lock down your Privileged accounts before attackers find the gaps."