Hello @Jorge A ,
I was able to review the description you have shared. Apart from Smart lockout password protection by default, Azure AD also protects against attacks by analyzing signals including IP traffic and identifying anomalous behavior. Azure AD will block these malicious sign-ins by default.
This cause the user is blocked as soon as the policy is enforced. Any issued tokens are revoked. For CAE enabled resources, access is terminated near immediately. This cause the application to prompt for authentication.
Apart from this if you feel this to be a DDOS attack, then Microsoft offers Azure DDoS Protection
Azure DDoS Protection protects resources in a virtual network including public IP addresses associated with virtual machines, load balancers, and application gateways. When coupled with the Application Gateway web application firewall, or a third-party web application firewall deployed in a virtual network with a public IP, Azure DDoS Protection can provide full layer 3 to layer 7 mitigation capability.
Kindly follow QuickStart for deployment.
Thanks,
Akshay Kaushik
Please "Accept the answer", "Upvote" and rate your experience if the suggestion answers your query. This will help us and others in the community as well.