Home

How does Microsoft prevent/bill Azure MFA failed authentications in a per-authentication model?

%3CLINGO-SUB%20id%3D%22lingo-sub-101217%22%20slang%3D%22en-US%22%3EHow%20does%20Microsoft%20prevent%2Fbill%20Azure%20MFA%20failed%20authentications%20in%20a%20per-authentication%20model%3F%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-101217%22%20slang%3D%22en-US%22%3E%3CP%3EGood%20day%20community%2C%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EA%20customer%20considers%20Azure%20MFA%20in%20a%20per-authentication%20model%2C%20%3CA%20title%3D%22Read%20more%20background%20details%20on%20this%20case%22%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2FAzure-Active-Directory%2FHow-to-get-Azure-MFA-for-1-12-ratio-external-users%2Fm-p%2F97621%23M755%22%20target%3D%22_blank%22%3Ebecause%20they%20have%20far%20more%20external%20users%3C%2FA%3E%20than%20internal%20employees.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EMicrosoft%20counts%20and%20bills%20both%20succesful%20as%20failed%20(%3CA%20title%3D%22See%20%26quot%3B2.%20Per%20Authentication%3A%20Billing%20is%20based%20on%20the%20number%20of%20two-step%20verification%20requests%20received%20by%20the%20Azure%20MFA%20cloud%20service%2C%20regardless%20of%20whether%20those%20verifications%20succeed%20or%20are%20denied%26quot%3B%22%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fazure%2Fmulti-factor-authentication%2Fmulti-factor-authentication-versions-plans%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3Edenied%3C%2FA%3E)%20authentications%2C%20so%20the%20customer%20wonders%3A%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWhat%20happens%20if%20somehow%20(a%20hacker%2Frobot)%20generates%20tons%20of%20failed%20authentications%3F%20Will%20Microsoft%20bill%20the%20customer%20accordingly%20or%20are%20there%20other%20mechanisms%20in%20place%20to%20prevent%20this%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EThank%20you%2C%3C%2FP%3E%3CP%3ECheers%20Mike%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-101217%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EMulti-Factor%20Authentication%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Mike van Zandwijk
New Contributor

Good day community,

 

A customer considers Azure MFA in a per-authentication model, because they have far more external users than internal employees.

 

Microsoft counts and bills both succesful as failed (denied) authentications, so the customer wonders:

 

What happens if somehow (a hacker/robot) generates tons of failed authentications? Will Microsoft bill the customer accordingly or are there other mechanisms in place to prevent this?

 

Thank you,

Cheers Mike