Configure Microsoft Entra ID to meet identity standards

In today's world of interconnected infrastructures, compliance with governmental and industry frameworks and standards is often mandatory. Microsoft engages with governments, regulators, and standards bodies to understand and meet compliance requirements for Azure. There are 90 Azure compliance certifications, which include many for various countries/regions. Azure has 35 compliance offerings for key industries including,

• Health
• Government
• Finance
• Education
• Manufacturing
• Media

Azure compliance is a head start

Compliance is a shared responsibility for Microsoft, cloud service providers (CSPs), and organizations. Use Azure compliance certifications as a basis for your compliance, and then configure Microsoft Entra ID to meet identity standards.

CSPs, government agencies, and those who work with them, must meet one or more sets of government standards, which can include:

• US Federal Risk and Authorization Management Program (FedRAMP)
• National Institute of Standards and Technologies (NIST)

CSPs and organizations in industries such as healthcare and finance have standards, such as:

• Health Insurance Portability and Accountability Act of 1996 (HIPPA)
• Sarbanes-Oxley Act of 2002 (SOX)

To learn more about supported compliance frameworks, see Azure compliance offerings.

Next steps

• See, Standards documentation Implement identity standards with Microsoft Entra ID
• Configure Microsoft Entra ID to achieve NIST authenticator assurance levels
• Configure Microsoft Entra ID to meet FedRAMP High Impact level