Assess Microsoft 365 and Entra ID identity controls across authentication, privileged access, Conditional Access, governance, and monitoring. Output: a clear score, category breakdown, and action plan.
← All Tools/Engineering Tools/Identity Risk Mapper
MFA is enforced for all users
Passwordless authentication is enabled
Legacy authentication protocols are blocked
Number of standing Global Administrators
PIM (Privileged Identity Management) is configured for privileged roles
Admin accounts are separate from daily-use accounts
A break-glass emergency admin account exists
Break-glass account is excluded from Conditional Access policies
Conditional Access policies are deployed and enforced
Sign-in risk policies are enabled (Entra ID Protection)
User risk policies are enabled (Entra ID Protection)
Identity Governance (access reviews, lifecycle) is configured
Security Rating
Category Scores
Top Findings
Prioritized Recommendations
Also available
22 free security utilities for DNS, subdomain enumeration, JWT decoding, CVE lookup, and more.
This tool reflects common Microsoft 365 / Entra ID identity security practices and is intended for planning support. It does not reflect formal compliance auditing or a complete environment assessment.