cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Home

Finding Azure Active Directory with Admin Roles Not Protected with MFA

%3CLINGO-SUB%20id%3D%22lingo-sub-754409%22%20slang%3D%22en-US%22%3EFinding%20Azure%20Active%20Directory%20with%20Admin%20Roles%20Not%20Protected%20with%20MFA%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-754409%22%20slang%3D%22en-US%22%3E%3CP%3EMicrosoft%20makes%20a%20strong%20case%20that%20all%20Azure%20Active%20Directory%20accounts%20should%20be%20protected%20with%20multi-factor%20authentication%20(MFA).%20That%E2%80%99s%20a%20great%20aspiration%2C%20but%20the%20immediate%20priority%20is%20to%20check%20accounts%20holding%20admin%20roles.%20This%20post%20explains%20how%20to%20use%20a%20PowerShell%20script%20to%20find%20and%20report%20those%20accounts.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Foffice365itpros.com%2F2019%2F07%2F15%2Ffinding-azure-active-directory-not-protected-with-mfa%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20nofollow%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Foffice365itpros.com%2F2019%2F07%2F15%2Ffinding-azure-active-directory-not-protected-with-mfa%2F%3C%2FA%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-754409%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EOffice%20365%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-757281%22%20slang%3D%22en-US%22%3ERe%3A%20Finding%20Azure%20Active%20Directory%20with%20Admin%20Roles%20Not%20Protected%20with%20MFA%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-757281%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F64%22%20target%3D%22_blank%22%3E%40Tony%20Redmond%3C%2FA%3Ecan%20please%20see%20the%20below%20link%20to%20check%20the%20users%20with%20and%20without%20MFA%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Foffice365itpros.com%2F2018%2F11%2F21%2Freporting-mfa-enabled-accounts%2F%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Foffice365itpros.com%2F2018%2F11%2F21%2Freporting-mfa-enabled-accounts%2F%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-757318%22%20slang%3D%22en-US%22%3ERe%3A%20Finding%20Azure%20Active%20Directory%20with%20Admin%20Roles%20Not%20Protected%20with%20MFA%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-757318%22%20slang%3D%22en-US%22%3E%3CP%3EThe%20text%20of%20the%20post%20says%3A%20%22%3CSPAN%3EWe%20discussed%26nbsp%3B%3C%2FSPAN%3E%3CA%20href%3D%22https%3A%2F%2Foffice365itpros.com%2F2018%2F11%2F21%2Freporting-mfa-enabled-accounts%2F%22%20target%3D%22_blank%22%20rel%3D%22noreferrer%20noopener%20nofollow%20noopener%20noreferrer%20noopener%20noreferrer%22%20aria-label%3D%22reporting%20of%20MFA-enabled%20accounts%20(opens%20in%20a%20new%20tab)%22%3Ereporting%20of%20MFA-enabled%20accounts%3C%2FA%3E%3CSPAN%3E%26nbsp%3Bpreviously%2C%22%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%3EI%20posted%20the%20script%20you%20reference%20in%20that%20link.%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E
Highlighted
Tony Redmond
Tony Redmond
MVP

‎07-15-2019 02:16 AM

‎07-15-2019 02:16 AM

Finding Azure Active Directory with Admin Roles Not Protected with MFA

Microsoft makes a strong case that all Azure Active Directory accounts should be protected with multi-factor authentication (MFA). That’s a great aspiration, but the immediate priority is to check accounts holding admin roles. This post explains how to use a PowerShell script to find and report those accounts.

 

https://office365itpros.com/2019/07/15/finding-azure-active-directory-not-protected-with-mfa/

Labels:
117 Views
1 Like
2 Replies
Reply
2 Replies
tmm1884

‎07-16-2019 09:19 AM

‎07-16-2019 09:19 AM

Re: Finding Azure Active Directory with Admin Roles Not Protected with MFA

@Tony Redmondcan please see the below link to check the users with and without MFA

https://office365itpros.com/2018/11/21/reporting-mfa-enabled-accounts/

 

0 Likes
Reply
Tony Redmond

‎07-16-2019 09:25 AM

‎07-16-2019 09:25 AM

Re: Finding Azure Active Directory with Admin Roles Not Protected with MFA

The text of the post says: "We discussed reporting of MFA-enabled accounts previously,"

 

I posted the script you reference in that link.

0 Likes
Reply
Related Conversations
Tabs and Dark Mode
 cjc2112 in Discussions on 09-18-2019
16 Replies
flashing a white screen while open new tab
 cntvertex in Discussions on 10-05-2019
11 Replies
How to Prevent Teams from Auto-Launch
 chenrylee in Microsoft Teams on 06-27-2019
28 Replies
What is Canary ring in Windows insider program? and how do we get them?
 HotCakeX in Windows Insider Program on 09-27-2019
9 Replies
How to download windows server 2019 update to 1903
 Cmakar37 in Windows Server for IT Pro on 07-03-2019
7 Replies
*Updated 9/3* Syncing in Microsoft Edge Preview Channels
 Elliot Kirk in Articles on 05-01-2019
217 Replies