SMS and Phone MFA
We saw a recent post that stated MS will be decommissioning SMS and Phone MFA as of July 10. It said the Message ID is: MC584364. Can anyone confirm this? I do not see the official notification from MS anywhere on this. Thanks Glen Original Post: https://m365admin.handsontek.net/changes-to-the-registration-campaign-feature-in-azure-ad/
Can multiple users use the same Authenticator app on one device
Hi, My use case is as follows: We have one shared mobile device and one shared laptop Authenticator installed on the above mentioned shared device Multiple users use the same mobile device and laptop (they work in shifts) Each person has their own private 0365 account Question: Can we configure Authenticator on the shared mobile device so, that there are multiple accounts but one can sign in only to one's own account by using the Authenticator, i.e. no access to sign in to other accounts by using the Authenticator. Best, Arde
Authenticator app not working on new phone - old phone with app is gone
Hello Tech Community, I have trouble with my email (hotmail) account. About 12 months ago I downloaded and activated the authenticator app after having hackers trying to enter my hotmail account. A few months ago I changed my phone and I have never been asked for second factor authentication until today (so I did not pay much attention to it as I could see it. The phone number attached is old and have no access to it and that device is long gone too). BIG PROBLEM! I have the app on my new phone but it is not linked to my account (and cannot do a Cloud Recovery). If I try to do anything with my account (forward emails or change anything) it asks me for the authenticator approval/code (that I do not have access to). I am scared about doing something that will log me out of my email (which I still have access to) but cannot make any changes nor log out. Please help. Can I deactivate the authenticator app somehow? or re-set it-up to work again? Can I migrate all my emails to a new account so I do not lose years of information if I get logged out? Can I set the forwarding emails option without having to pass by second facto authentication? Looking forward to hearing from you wise community, Thank you
How to register a second and a third mobile phone for MFA?
How do I register a second and a third device (iPhone / iPad in in this particular case)? First phone (main phone) is already using the Authenticator App without problem. Now we need to register a second phone as backup device (and with an alternative cellular carrier) and a iPad as third device. All devices should use the Authenticator App.Multi-factor Authentication (MFA) via Security Defaults enforced on tenants by Microsoft (status)
Hi all, - Security Defaults is enabled by default on all newly created Microsoft 365 tenants. - Microsoft has started enforcing Multi-factor Authentication (MFA) on all tenants. - MFA will not be enforced on tenants using Conditional Access policies (at least one Azure AD Premium P1 license is required to be able to use Conditional Access policies). - Self-service password reset (SSPR) will enforce Multi-factor Authentication on all accounts (and the breakglass account) but SSPR can be disabled. - Please check admin.microsoft.com >Health > Message center regarding notification. - Security Defaults requires all users to register for MFA within 14 days; however, users can postpone this registration. After 14 days, they will be forced to do the registration; however, this happens during interactive sign-ins. - If a user doesn't perform the MFA registration and a bad actor figures out the user's password, they can register their phone or authentication app as an MFA method. It is recommended: - to use MFA company-wide because this security-feature prevents 99.9% of attacks on your accounts. - to revoke existing tokens to require all users to register for multifactor authentication. This revocation event forces previously authenticated users to authenticate and register for multifactor authentication. https://learn.microsoft.com/en-us/microsoft-365/business-premium/m365bp-turn-on-mfa https://learn.microsoft.com/en-us/microsoft-365/admin/add-users/let-users-reset-passwords https://learn.microsoft.com/en-us/entra/fundamentals/security-defaults#revoking-active-tokensMicrosoft Authenticator Still Prompts Users for MFA after Switching to new MFA option on IPhones
Good Morning All, Our company recently made the change from Microsoft Authenticator to utilizing Duo through ADFS for our 365 MFA solution. The deployment was a success but we have noticed an issue involving all of our users who have iPhones and issues they run into when trying to sign into any of their Office 365 apps on their phone. Any user who goes to sign in on their iPhone is being prompted for MFA by the Microsoft Authenticator despite the Authenticator being disabled as an option in our tenant. This seems to be the case on brand new phones as well if both the authenticator and another 365 product are installed on the phone. The login is usually successful and the Microsoft Authenticator is seemingly doing nothing but just prompting the user to approve the login but it has caused some issues for certain users by giving them failed logins. We've found that removing the Authenticator app fixes this but that's not always a solution as some users have more than one account linked to the Microsoft Authenticator. Has anybody else run into this issue before and have you found any solutions to stop the Microsoft Authenticator from prompting users after switching to another MFA solution?
Authenticator backup use company account
Just switched phones yesterday and discovered my Authenticator app backs up using a personal Microsoft account instead of my business account. If MFA is required by a business, shouldn't Authenticator be backed up using business accounts? In my opinion, there should be a way to keep business and personal MFA separate within a single app. Outlook does this with my business and personal email accounts...Enhance Your Online Security: A Step-by-Step Guide to Implementing Two-Factor Authentication (2FA)
It's the start of the new academic year for many students in the US and Europe and it's the time when you're in a new city meeting new people and having all sorts of fun, so you may accidently loose or damage your device."We have a failure to communicate" (sorry -- Authenticator issues to be described)
Hello, and thank you. I have been a Microsoft Business Partner (small business) for over 10 years. I have an account I can log into, but there's another "onmicrosoft" account that Authenticator won't let me log into. That account holds my Action Pack benefits -- and so this is really a problem. I have Authenticator on my mobile phone. I try to log in and MS sends me a text code to type in. I do that and it then tells me to set up Authenticator. I scan the QR code and see the account in my phone. Then, the website asks me to input a 2 digit number to finish things. I type it in and the message on the site says that I "denied" it. ???? ("We sent an identity verification request to your mobile device, but you denied it. Please choose "Resend notification" to try again.") It never works. When I go back to retry, the system makes it appear that I need to re-enter the QR code again. I really need some help/advice here. Thank you. Tom
