Azure MFA issues

Home Forums Cloud Computing Microsoft Azure Azure MFA issues

This topic contains 1 reply, has 2 voices, and was last updated by Avatar Aidan Finn 5 months, 3 weeks ago.

Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
  • Mary Jo Foley
    Mary Jo Foley

    In the span of two weeks, Microsoft has experienced two global Multi-Factor Authentication (MFA) issues with Azure Active Directory — which, in turn, affected Office 365 and other Microsoft services which use MFA for authentication.

    It’s not a good look for the Microsoft cloud. Besides calling on Microsoft to get its overall quality act together, like Petri contributor Aidan Finn did here, what can IT pros do to try to head off MFA issues, short of shutting off MFA, which is not advisable? Thoughts, folks?

    Aidan Finn

    1) Create a backdoor – a single account with MFA disabled but it has a crazy long passphrase. Maybe even turn it into a 2-key “nuclear” passphrase where no one person knows the entire passphrase or has access to the whole passphrase.

    2) Get some Azure AD Premium licensing (talk to a licensing expert – I think there is a “single license” trick that is legit). Enable conditional access so you don’t prompt for MFA from trusted devices/networks. The idea is that if you’re logging in from in a trusted site that you are physically in, then MFA isn’t required.

    Turning off MFA is bad. ID theft is the easy way into any business.

    • This reply was modified 5 months, 3 weeks ago by Avatar Aidan Finn.
Viewing 2 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic.