Forum Discussion
office 365 MFA preferences
are any of the MFA options in Azure AD/Office 365 'risky' from a security perspective, or considered significantly less secure than the other options (I've read various conflicting opinions). If yes, are there ways to take that option away from the users during MFA registration?
If there are any specific security attacks that I could quote against certain MFA choices that may help build a case to warn users on the safer alternatives.
Alternatively, should all global admins for argument sake be using a specific default MFA method over others from a security perspective?
1 Reply
CRIB111 Hello, there are some really good and extensive articles on the docs about AAD MFA settings and authentication methods, and security as well. I think it's better if you read about it as it's literally too much to suggest. But I have tried to make it easier for you as the links here should answer your questions.
Comparison of methods
https://docs.microsoft.com/en-us/azure/active-directory/authentication/concept-authentication-methods
Select the available MFA options for your users
https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-mfasettings
Protect global admin
https://docs.microsoft.com/en-us/microsoft-365/enterprise/protect-your-global-administrator-accounts?view=o365-worldwide
Secure
https://docs.microsoft.com/en-us/microsoft-365/admin/security-and-compliance/secure-your-business-data?view=o365-worldwide
Secure
https://docs.microsoft.com/en-us/microsoft-365/security/top-security-tasks-for-remote-work?view=o365-worldwide
