Forum Discussion

rhsanktpetriskole's avatar
rhsanktpetriskole
Copper Contributor
Sep 28, 2023

2FA on a specific team

Hi. I have enabled 2FA for a testuser and that works fine when i login to microsoft products in general.  Now i want to make a specifik Team in Teams with 2FA, but i can't fiure out how and maybe i...
How-to
microsoft teams
Settings
rhsanktpetriskole's avatar
rhsanktpetriskole
Copper Contributor
Sep 28, 2023

Thnax leon.

 

I just found this:

https://learn.microsoft.com/en-us/microsoft-365/solutions/configure-teams-highly-sensitive-protection?view=o365-worldwide

 

Would that be efficient?

LeonPavesic 

LeonPavesic's avatar
LeonPavesic
Silver Contributor
Sep 29, 2023

Hi rhsanktpetriskole,

 

Yes, the link you provided is a good resource for configuring highly sensitive protection for Microsoft Teams. This can be a good way to improve the security of your team, especially if it contains sensitive data.

However, it is important to note that this feature is not specifically designed to enable MFA for a specific team. It is more general-purpose, and it can be used to implement a variety of security measures, such as:

  • Requiring users to authenticate with a strong password and/or MFA.
  • Preventing users from forwarding or copying messages from the team.
  • Preventing users from downloading or printing messages from the team.
  • Preventing users from adding new members to the team.
  • Preventing users from changing the team's settings.

If you are only interested in enabling MFA for your team, then you may want to consider using a third-party solution, (such as miniOrange).

Ultimately, the best way to secure your team will depend on your specific needs and requirements.

Please click Mark as Best Response & Like if my post helped you to solve your issue.
This will help others to find the correct solution easily. It also closes the item.


If the post was useful in other ways, please consider giving it Like.


Kindest regards,


Leon Pavesic
(LinkedIn)

  • rhsanktpetriskole's avatar
    rhsanktpetriskole
    Copper Contributor
    Oct 02, 2023

    Thnax again for the really good response.

    Just one last question. Is it possible with Mini orange to just make 1 team with 2FA and the rest with out?

    LeonPavesic 

    • StevenC365's avatar
      StevenC365
      MVP
      Oct 02, 2023

      rhsanktpetriskole This is possible, without any third party components, and you've referenced useful articles already that show how.

       

      Create Authentication Contexts with Sensitivity Labels will allows Conditional Access to require specific login requirements, like MFA or other factors. This article may also help explains.

       

      Conditional access policy for SharePoint sites and OneDrive - SharePoint in Microsoft 365 | Microsoft Learn

       

      I would say please require MFA for all access though, it's really not enough for any business data to only be protected by a password these days. It doesn't need to be impactful to users, Windows Hello for Business for login counts as MFA when being assessed.

Resources