Security Best Practices
There is no warranty of this information. Make changes after consulting with your organizations leadership and change management process. Changes you make here will impact your organizations security posture
Microsoft 365 admin center
Step 1 - Ensure a policy and procedure is in place at the organization:
In order for accounts to be effectively used in a break-glass situation, the proper policies and procedures must be authorized and distributed by senior management.
Active Directory Privileged Access Introduction The challenge of understanding the access privileges of various groups in Active Directory. Often, the full impact of a group’s access is not fully comprehended by the organization. Attackers frequently exploit access, even if it’s not always privileged access, to compromise Active Directory. Components of Access Rights Active Directory group membership. AD groups with privileged rights on computers. Delegated rights to AD objects through modifications of default permissions (for security principals, both direct and indirect).