Tag: mfa

Posted on by

Microsoft Authenticator: Installation on a new smartphone

Scenario: You use Microsoft Authenticator to access your Microsoft 365 account. You have changed your smartphone and you need to re-initialize the Authenticator on the new smartphone.

The procedure must be performed by the Tenant administrator.

Enter portal.office.com of the Tenant with administrative role.

Microsoft Entra

In the “Microsoft 365 Administration Center” on the left click on “Identity” (If you do not see it click on “Show All”).

At this point you will be projected into the “Microsoft Sign In Administration Center”.

On the left select “Users”.

On the right, search for the user and select it. On the user page, on the left, select “Authentication Methods”

On the new page, at the top right, there is a button “re-enroll multi-factor authentication”.

Azure Portal

Microsoft Entra user management can also be reached from the Azure portal by selecting “Microsoft Entra ID”. Then select “Users” and continue with the previous procedure.

Posted on by

Microsoft MFA : Enabled or Enforced

Multi Factor Authentication (MFA)

Microsoft recommends using multi factor authentication for global tenant administrators. If you don’t do this, 60 days after the last reminder from Microsoft, the tenant is deactivated.

Warning: it’s not enough to activate 2-factor authentication … you also have to use it.

Enabled or Enforced

The problem is that activation is not enough. In fact, after activating the user, he must also log in with the MFA: at this point the user’s status changes from Enabled to Enforced.

You don’t have to have Global Admin with MFA in Enabled status but only in Enforced status.