Customers deploying AAD needed to implement conditional access policies. However, there was no visual tool for administrators to communicate these complex policies.
Introduction
Merrill Fernando, a principal product manager on the Microsoft Identity team, plays a critical role in assisting customers with deploying Azure Active Directory and the comprehensive cybersecurity policies it encompasses.
Challenge
Deploying conditional access policies in AAD presented a significant challenge. Administrators lacked a visual means to explain these policies to internal or external to stakeholders, such as cyber security architects and business managers. The policies’ complexity and the admin console’s technical nature exacerbated this communication barrier.
Solution
Merrill innovated a solution by conceptualizing a PowerPoint-based documentation tool to address this. Utilizing Syncfusion’s PowerPoint Library controls and API, he created a React application paired with a .NET Core backend. This tool generates visual representations of conditional access policies, which enhances comprehension and communication.
Additionally, admins can mail this PowerPoint deck to cybersecurity team members and other stakeholders to explain how their security policy is set up.
Success by the numbers
Improvements
The tool, documented on idpowertoys.com, is now available open-source on GitHub, enabling others to clone and deploy it within their systems. While it’s free for community use under Syncfusion’s Community License, enterprise use requires appropriate licensing. Merrill’s already had many people clone and run the tool locally for themselves.
Conclusion
Merrill’s demo and code, accessible via Visual Studio on both Mac and Windows, underscore the cross-platform capabilities of Syncfusion’s .NET Core API and the broader impact of his innovative solution.
