cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Security Office 365 Login

Rafiquea
Copper Contributor

‎Aug 16 2021 12:28 PM

‎Aug 16 2021 12:28 PM

Security Office 365 Login

Hi

 

I know many will object but users (including IT admins) will work in ways that are easy for them regardless of IT requests or security concerns. 

 

Q. When a user logins to office.com and selects "trust this computer/remember me", they can then log in to office.com from that computer without any request for credentials.  If also makes 2FA a bit useless.  The computer could be a friends, college computer, library PC, etc.  People do and will tick that setting and will simply shut down the browser without logging off.  Anyone else, then goes to office .com with the same browser and they have full access to a user account.  It logs you straight in.

 

How can you auto log off users after a period of inactivity from office.com as this poses a serious security risk.  We have not found a solution yet.

 

 

Labels:
3,178 Views
0 Likes
2 Replies
Reply
2 Replies
David_Petree

‎Aug 16 2021 05:50 PM - edited ‎Aug 16 2021 05:52 PM

‎Aug 16 2021 05:50 PM - edited ‎Aug 16 2021 05:52 PM

Re: Security Office 365 Login

Screenshot 2021-08-16 195149.png

Don't allow them

- https://docs.microsoft.com/en-us/azure/active-directory/authentication/concepts-azure-multi-factor-a...

1 Like
Reply