Forum Discussion

L0lo_'s avatar
L0lo_
Copper Contributor
Apr 23, 2024

Secure Score / 2FA on sharedmailbox

Good morning, everybody. I am responsible for maintaining a SecureScore at a fairly high level in an organization. The recommended actions include "Verify that MultiFactor Authentication is enabl...
JosvanderVaart's avatar
JosvanderVaart
Iron Contributor
Apr 23, 2024

Do I understand correctly that you excluded these accounts from the policy? In any case, this would not be the intention. If you have a policy on for all users with no exclusions this advice should not be given. Be sure to share your MFA policy with us!

  • L0lo_'s avatar
    L0lo_
    Copper Contributor
    Apr 23, 2024

    JosvanderVaart We cannot exclude these accounts from the "secure score checking" : 

    (sorry it's in French)

     

    I have 264 users with 2FA enabled (perfect !) but the 63 left doesn't have 2FA enabled. These accounts are resource calendar, shared mailbox, and external users. 

    The logique would be to exclude the accounts which cannot have 2FA enabled, right ?

     

    • JosvanderVaart's avatar
      JosvanderVaart
      Iron Contributor
      Apr 23, 2024
      Can you share the configuration of the conditional access policy?
      • L0lo_'s avatar
        L0lo_
        Copper Contributor
        Apr 23, 2024

        I didn't make that policy myself, I give you what I found 🙂