Configure Identity Entity Tags
Implementation Effort: Medium – Tagging entities requires coordination between security and identity teams to identify and classify accounts, especially for sensitive and honeytoken tags.
User Impact: Low – Configuration is handled by administrators; end users are not affected or required to take any action.
Overview
The Defender for Identity's ITDR dashboard offers an overview of users in hybrid, cloud, and on-premises environments (AD and Microsoft Entra ID). Review your inventory to ensure it matches your expectations. This will help define deployment scope and utilize Advanced Hunting, identifying sensitive accounts with risky lateral movement paths and those unused for 180 days or more.