Forum Discussion
Setting Microsoft Authenticator as default
JamesRV Hi, you can choose the available options in the MFA service settings Configure Azure AD Multi-Factor Authentication - Azure Active Directory | Microsoft Docs
And you also have the preview Passwordless sign-in with the Microsoft Authenticator app - Azure Active Directory | Microsoft Docs
- JamesRVFeb 04, 2021Brass Contributor
ChristianBergstrom
Thank you for your response. I do know how to enable MFA methods.
We are trying to see if we can "Force Authenticator as a method that cannot be removed."When you have multiple options available like authenticator/text/phone call the user can "delete/remove" authenticator and use only text/phone.
We want to ensure that Authenticator is Always the primary and couple of other options as secondary.
I do not see any documentation to be able to do this.- ChristianBergstromFeb 04, 2021Silver ContributorWell, if you remove the other options under MFA service settings.
From the Preview link.
”Azure AD lets you choose which authentication methods can be used during the sign-in process. Users then register for the methods they'd like to use.”
You can always select the ”Use a password instead” link on the sign-in page to switch back to using your password, and the other way around.
https://docs.microsoft.com/en-us/azure/active-directory/user-help/user-help-auth-app-sign-in- MondasJul 14, 2021Iron ContributorJust adding to this...we allow Autneticator app and SMS (for users without smartphones...yes there are some still). The issue is however when you go through the set up the primary method is SMS and you have to click the dropdown to change to authenticator. We would like to switch it so Authenticator is the primary method and if required the user can click the dropdown to change to SMS.
Is this possible?