Category: MFA

News Informatique

Authenticator number matching to be enabled for all users

When this will happen: Beginning May 8, 2023 How this affects your organization: To prevent accidental approvals, admins can require users to enter a number displayed on the sign-in screen when approving an MFA request in the Microsoft Authenticator app. This feature is critical to protecting against MFA fatigue attacks which are on the rise. …

Rollout of Security Default in Microsoft tenants

Microsoft has begun the rollout of security defaults to existing customers who haven’t yet rolled out security defaults or Azure AD Conditional Access.  Microsoft introduced security defaults in October 2019 for new tenants, ensuring that new customers would be created and maintained with basic security hygiene in place – especially MFA and modern auth requirements – regardless …

Enablement of combined security information registration for Azure Active Directory

In April 2020, the combined security information registration experience for registering both multifactor authentication (MFA) and self-service password reset (SSPR) was released for you to opt in. Upcoming, Microsoft will be making the new combined security information registration experience the default for all tenants. Note: This change will not impact you if your tenant was …

Temporary Access Pass [Public Preview]

Temporary Access Pass is a game-changer that completes the end-to-end passwordless onboarding experience for your users. Microsoft created Temporary Access Pass to address many of your passwordless account onboarding and recovery scenarios. For a user to truly be passwordless, they shouldn’t know or use their password, and instead use passwordless authentication methods and recovery if …

Problem with mail native apps with Modern Auth & Exchange ActiveSync Disabled [Azure AD MFA]

Since iOS 11.3.1, the native mail app can support Modern Authentication. Modern Authentication is a prerequisite to apply MFA on the user. So, if you use Modern Authentication, and that you require MFA for your users when they sign in to a O365 service, and that you have disabled ActiveSync – because it is a …

Microsoft Authenticator app lock now enabled by default

A few years ago, Microsoft released theApp Lock feature in response to feedback that some customers wanted to make sure that your app was secured by a PIN or biometric. Last month, Microsoft expanded App Lock’s protection. Now, if App Lock is enabled, when you approve any notification, you’ll also have to provide your PIN …

Combined MFA and password reset registration is now generally available

The 16th April, Microsoft announced that the combined security information registration is now generally available. This new experience makes it easy for users to register for Multi-Factor Authentication (MFA) and Self-Service Password Reset (SSPR) in a simple step-by-step process. Mobile experience Now, when users register while signing in on their phone, they’ll see this easy …