Forum Discussion
Setup multiple multifactor authentication for one account
Hello,
I would like to know the best way to set up multiple MFAs for one single account used by different users. Our configuration only allows authenticator apps and phones. But with the app, the messages go to all the users who set up the MFA for this account. Is there a better way to accomplish this?
1 Reply
Take this:
- Use App Passwords:
- App passwords can be used for applications that don't support MFA. This way, each user can have their own app password to access the account without triggering MFA for others.
- Shared Mailbox:
- Convert the account to a shared mailbox. Shared mailboxes don't require MFA, and you can manage access through permissions. This approach is more secure and manageable.
- Separate Authenticator Instances:
- You can set up multiple instances of the authenticator app for the same account. Each user can have their own instance of the app, and they will receive their own unique 6-digit code. This way, the push notifications won't go to all users, but each user will have their own code to enter.
- Conditional Access Policies:
- Use Conditional Access policies to define specific conditions under which MFA is required. This can help you manage when and how MFA is triggered, reducing the number of unnecessary MFA prompts.
- Security Defaults:
- Ensure that security defaults are enabled in your Microsoft 365 admin center. This can help streamline the MFA process and ensure that all users are following the same security protocols.
- Use App Passwords:
