SECURITY · IDENTITY & ZERO TRUST
A lockout scare, an audit finding, or no emergency access plan? Get break-glass accounts that work when everything else does not.
A fixed-fee quick engagement that creates, protects, tests, and documents emergency access accounts in Microsoft Entra ID, so a Conditional Access mistake or an outage never locks you out.
The deliverable
This is what lands on your desk.
A representative deliverable. Yours is built on your own environment, with names and figures redacted here.
This is for you if
Built for the IT Director or CISO.
A lockout scare or an audit finding flagged the lack of emergency access. You have no documented way back in if Conditional Access or MFA breaks. You want a high-trust, low-cost first engagement.
What you receive
Named deliverables you keep.
Emergency Access Runbook
Two break-glass accounts, excluded from CA, protected with hardware keys, monitored, and documented.
Tested lockout drill
A simulated lockout proving the accounts actually work.
Alerting on use
Sign-in alerting so any use of a break-glass account is seen.
Typical timeline
1 dayIncluded
- Two emergency access accounts
- Conditional Access exclusion and hardware-key protection
- Sign-in alerting
- Tested runbook
Assumptions
- One Microsoft Entra ID tenant
- Admin access to create the accounts
Not included
- Broad identity redesign
- Privileged access management rollout
Those live in: Entra ID Zero Trust Hardening Sprint.
Required access
- Entra ID admin access
- Two hardware security keys
- A 30-minute kickoff with IT
Done when
The engagement is complete when the two accounts are created, protected, tested, and the runbook is delivered.
The ADAPTO
process
Never get locked out of your own tenant.
A fixed price you see before you commit, delivered in days, ending in evidence you can hand to a board or an auditor.
Start a diagnostic →