Azure Smart Lockout Feature helps to protect against bad actors while also allowing your users access. This is done by setting a lockout threshold for both the Azure AD.. When bad actors attempt to log in to your Azure AD, they will reach the password attempt limit and be locked out. Your users can then try accessing their resources by logging in on a IP that has successfully logged on before, and they will be able to log in (given that they themselves don’tĀ lock themselvesĀ out for too many attempts).
To configure this feature, go to Microsoft azure>Azure Active Directory>Security>Authentication methods>Passport protection.