Home

AAD Reauthentication/MFA enforcement

%3CLINGO-SUB%20id%3D%22lingo-sub-775217%22%20slang%3D%22en-US%22%3EAAD%20Reauthentication%2FMFA%20enforcement%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-775217%22%20slang%3D%22en-US%22%3E%3CP%3ECurrently%2C%20user%20authentication%20to%20Azure%20AD%20with%20MFA%20is%20only%20required%20when%20subscribing%20to%20a%20feed.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EIt%20would%20be%20great%20if%20we%20could%20optionally%20flag%20host%20pools%20or%20specific%20remote%20applications%20with%20a%20requirement%20for%20user%20reauthentication%20against%20AAD%2C%20because%20this%20would%20allow%20to%20require%20MFA%20again%20and%20also%20cover%20the%20case%20of%20federated%20custom%20domains%20where%20AD%20FS%20%2B%20whatever%20custom%20authentication%2Fon-premises%20Microsoft%20MFA%20Server%2F3rd%20party%20MFA%20providers%20handle%20authentication.%20This%20would%20allow%20for%20stricter%20security.%20Instead%20of%20a%20flag%2Foption%20on%20the%20e.g.%20a%20desktop%20app%20group%2C%20this%20could%20also%20be%20represented%20in%20the%20form%20of%20policies.%3C%2FP%3E%3C%2FLINGO-BODY%3E
CountZero
Frequent Visitor

Currently, user authentication to Azure AD with MFA is only required when subscribing to a feed.

 

It would be great if we could optionally flag host pools or specific remote applications with a requirement for user reauthentication against AAD, because this would allow to require MFA again and also cover the case of federated custom domains where AD FS + whatever custom authentication/on-premises Microsoft MFA Server/3rd party MFA providers handle authentication. This would allow for stricter security. Instead of a flag/option on the e.g. a desktop app group, this could also be represented in the form of policies.

Related Conversations
Tabs and Dark Mode
cjc2112 in Discussions on
35 Replies
Extentions Synchronization
Deleted in Discussions on
3 Replies
Stable version of Edge insider browser
HotCakeX in Discussions on
35 Replies
flashing a white screen while open new tab
Deleted in Discussions on
14 Replies
How to Prevent Teams from Auto-Launch
chenrylee in Microsoft Teams on
29 Replies
Security Community Webinars
Valon_Kolica in Security, Privacy & Compliance on
9 Replies