Skip to main content
Modern 42 Logo
Engineering & Delivery

Continuous visibility across your entire identity estate.

Most organisations cannot answer basic questions about their identity posture without manual data gathering. Apporetum is Modern 42's identity observability platform. Engineered by our team, deployed into your Azure tenant, and available on the Azure Marketplace. It gives you a live, unified view across Microsoft Entra ID, Entra External ID, Active Directory, and disconnected systems via CSV import.

Get An Observability Demo View engineering services
The platform

What is Apporetum

Identity observability engineered by Modern 42's engineering team. Available on the Azure Marketplace.

Apporetum is Modern 42's identity observability platform, developed and maintained by our engineering team and available on the Azure Marketplace. It reads continuously from Microsoft Entra ID, Entra External ID, and Active Directory to give you a real-time picture of your identity security posture. Disconnected systems can be ingested via CSV import, bringing your entire identity estate into a single view.

Unlike SIEM platforms that require extensive configuration and signal tuning, or point-in-time audits that are outdated the moment they finish, our observability platform provides ongoing visibility with out-of-the-box identity-specific content.

Because the platform is developed and maintained by Modern 42, our engineering team can extend it for your environment when standard capabilities do not cover a specific monitoring requirement.

Engineered by Modern 42

Apporetum is developed and maintained by Modern 42's engineering team. It is not a resold or white-labelled product.

Apporetum sits within your network perimeter, deployed into your Azure or AWS cloud. It is not a SaaS product. Your identity data never leaves your environment, and the platform is hardened by default with the flexibility for organisations to apply additional controls.

Available on the Azure Marketplace. Deployed into your Azure tenant.

Get it fromAzure Marketplace
Real-time visibility

Your identity posture at a glance

The platform consolidates identity signals from Microsoft Entra ID, Entra External ID, Active Directory, and disconnected systems into a single operational view. MFA adoption, identity lifecycle health, stale accounts, and access review compliance are all visible without switching between consoles or building custom queries.

Dashboards update continuously, giving security and identity teams a live picture rather than a periodic snapshot. When a metric drifts outside your defined threshold, the platform raises an alert before it becomes an audit finding.

Apporetum identity observability dashboard showing identity model and compliance metrics
Modern 42 engineers deploying Apporetum identity observability platform
Industry Research

Developed and maintained by Modern 42. When you deploy Apporetum, you work directly with the identity engineers who built it.

Deploy Apporetum
Coverage

What Our Identity Observability Monitors

Out-of-the-box observability content across Microsoft Entra ID, Entra External ID, Active Directory, and disconnected systems, grouped into six reporting domains.

Entra ID identity health

MFA adoption rates, authentication method distribution, identity protection signal coverage, and stale account detection across your tenant.

HR to Entra and AD effectiveness

Measure how effectively your HR source of truth flows through to Entra ID and Active Directory. Detect orphaned accounts, sync gaps, and lifecycle misalignment across your identity estate.

Identity lifecycle health

Stale account detection, access review completion rates, guest and external identity lifecycle, and service account compliance monitoring.

Agentic AI governance

Workload identity visibility across app registrations and service principals. Track granted Graph and API permissions, redirect URI hygiene, credential expiry, ownership gaps, and consent grants so AI agents and automated workloads do not become an unmanaged identity tier.

Entra ID PIM governance

Detect privileged roles configured without approval requirements, users sitting on active rather than eligible assignments, and admin accounts assigned roles they do not require. Reports on PIM usage, assignment patterns, and approval activity so privileged access stays justified and reviewable.

Governance reporting

Executive dashboards, trend analysis across all identity domains, audit-ready evidence exports, and automated alerting for policy deviations.

Compliance out of the box

Evidence and reporting your auditors actually ask for

Apporetum continuously produces the identity evidence required for Australian and international compliance frameworks, so you can answer audit questions in minutes rather than rebuilding the data set for every assessment.

  • Essential Eight maturity evidence for multi-factor authentication and restrict administrative privileges
  • ISO 27001 Annex A.5 and A.8 access control evidence ready for auditor handover
  • APRA CPS 234 identity control evidence across regulated systems
  • SOC 2 access management evidence with point-in-time snapshots and trend exports
  • Access certification and review completion evidence for SOX, PCI DSS and HIPAA scoped applications
  • Privileged access evidence covering PIM active vs eligible assignments, approvals and role usage
  • Joiner, mover and leaver attestation evidence sourced HR to Entra ID to Active Directory
  • MFA enforcement and authentication strength evidence by user, application and conditional access scope
  • Workload identity, app registration and consent grant evidence for agentic AI and automation governance
  • Privileged group membership and Tier 0 administration evidence for Active Directory
  • Guest and external identity inventory with sponsorship, last sign-in and review status
  • Audit-ready evidence packs exportable on demand without identity team intervention
Implementation

Deployment service

Getting value from the platform quickly requires configuration for your environment. We deliver a complete deployment service.

  • Platform deployment to Azure via Marketplace
  • Microsoft Entra ID, Entra External ID, and Active Directory connector setup
  • Dashboard and alert threshold configuration
  • Baseline establishment and initial findings review
  • Team training and knowledge transfer
  • Optional: ongoing managed monitoring
Procurement

Azure Marketplace

The platform is available on the Azure Marketplace, making procurement straightforward for Australian government and enterprise organisations. Organisations with existing Azure commitments can apply Marketplace spend against those commitments.

For government organisations, it is available through standard Microsoft procurement arrangements.

Get it fromAzure Marketplace
FAQ

Common questions

No. Apporetum is a platform solution deployed directly into your Azure or AWS cloud. It sits within your network perimeter, and your identity data never leaves your environment. The platform is hardened by default, but organisations with stricter requirements can apply additional controls. You manage it as you see fit.
Read-only API access to Microsoft Entra ID (Microsoft Graph read permissions), Entra External ID, and Active Directory. Disconnected systems can be ingested via CSV. No write permissions are required.
Typically one to two weeks for a standard deployment, including configuration and training.
Yes. Apporetum can export data to Microsoft Sentinel and other SIEM platforms. Integration scope depends on the SIEM platform.
Microsoft Solutions Partner — Security, Identity and Access Management designation badge

Microsoft Cloud Solutions Partner for Security

Modern 42 is a recognised Microsoft Cloud Solutions Partner for Security with the Identity and Access Management designation. Verify on Microsoft

Let’s talk about your identity platform

No pitch decks. No pressure. Just a straightforward conversation about your Entra ID environment, what’s working, and what needs to change.

  • Review your current Entra ID and identity architecture
  • Identify migration paths and modernisation opportunities
  • Get practical engineering guidance — no strings attached

Free 30 min discussion

No commitment required

Book a time that works for you. We’ll come prepared with initial observations about your identity platform and common engineering challenges.

Book a discussion Email us

We use cookies

We use cookies and similar technologies to help personalise content, measure the performance of our site, and provide a better experience. By clicking Accept, you consent to the use of all cookies.
Learn more.