Forum Discussion
Conditional Access vs enable MFA
I've started testing MFA within our org. I created a conditional access policy with access controls of MFA or hybrid AD joined. But when I look at MFA through the o365 portal https://accoun...
That's the expected behavior. If you enable it via the MFA page, it will always require MFA, the only exception being users logging from "trusted IPs". So it's a good way to have an "always on" configuration for your most sensitive users. If you want flexibility/better customization, use CA policies - this is the recommended method nowadays.
thank you, do you know if using conditional access counts toward the security score?
The score is just and arbitrary number, the important thing is the action not whether it increases the score :)
