Demystifying Microsoft 365 MFA: Security Defaults & Conditional Access

Показать описание

MFA vs Security Defaults vs Conditional Access

Which security is right for your business?

We all agree that you must make your Microsoft 365 secure with multi-factor authentication. But there are three different options for your business on how to implement MFA - and we're going to be talking about these in today's video.

So, the three ways to implement MFA are

1. Per user
2. Security defaults
3. Conditional Access

------------------------------------------------------------------------------------------------------------------------------------------------
Are you using Microsoft 365 to its fullest potential? Are you getting the most from your investment? It's time to supercharge your Microsoft 365 and your business.

Our FREE Guide - Discover 5 things in Microsoft 365 that will save your business time and money….. and one feature that increases your Cyber Security by 99.9%

------------------------------------------------------------------------------------------------------------------------------------------------

--------
So who am I and what do I do?

I am an IT expert with over 20 years of industry experience across a multitude of different areas. I am the Founder & Managing Director of Integral IT. Our mission is to deliver IT services that bring real value to each and every one of our customers, no matter how big or small.

If you need IT support, we can help. We can help you wherever you are in the world; you just need an internet connection.

-- Make Sure To Follow Me On My Socials Below --

If you have any video ideas, or if you'd like me to make a video on anything specific make sure to let me know in the comments below!

00:00 Introduction
01:01 Per User MFA
01:36 Security Defaults
02:31 Conditional Access
04:10 How to Configure MFA
06:41 How to Configure Security Defaults
07:22 How to Configure Conditional Access

Рекомендации по теме

Комментарии

Enjoyed this. What is frustrating is that some parts of 365 can show MFA not configured, but it IS configured, under Conditional Access.

networkn

Security Defaults mandates that normal users must *setup* MFA (within 14 days) but *does not* mandate its use, except when the system determines the sign-in as 'risky' e.g. last sign-in was from UK, then suddenly the next is from Africa, or if the user is resetting their own password. Security Defaults mandates MFA registration *and use* for all administrative roles e.g. Global Admin, User Admin etc. Google 'Security defaults in Microsoft Entra ID' for further info. I think this is a nice balance between security and user convenience, imho.

davidadams

Enforced means the user has completed the MFA registration. Enabled means they have not and have 14 days by default or will be forced. I’d you don’t want MFA you simply don’t click enable MFA. You should never click enforce unless they have previously registered according to MS. Good video

James-sclz

You and Andy are my Hero's!!!! This video is absolutely amazing, and I'm actively implementing the strategies outlined here. However, I'm facing a challenge in my environment. Somehow, the 'Verify by Phone' feature got activated for my users. We're planning a full rollout in the 2nd or 3rd week of January, and I need this phone verification feature turned off temporarily until we complete our user migration. My plan is to enable all multi-factor authentication (MFA) and phone verification after 90+ days post-migration. Any advice on how to manage this would be greatly appreciated!

GoreGamer

If only the administrator has the Premium license and has set Conditional Access, then the regular users who have Basic or Standard license, what policy do they follow?

theoyiorkas

I've enabled MFA for half my users using per user method. If i was to enable it now for everyone, via defaults, will the previous, already enrolled users be affected as well? I'd love to get 50% less phone calls about forgotten passwords during deployment.

SilesianWarrior

Demystifying Microsoft 365 MFA: Security Defaults & Conditional Access

Demystifying Microsoft 365 MFA: Security Defaults & Conditional Access

Demystifying Microsoft Cloud App Security (MCAS)

Demystifying Microsoft Security

Microsoft 365 Security Basics: Enterprise Application Admin Consent Workflows

Not all authentication is created equal: How phishing-resistant MFA can be the key

Demystifying Modern Authentication

Boost Security With Microsoft Entra Conditional Access Authentication Strengths! | Peter Rising MVP

Utilizing Microsoft 365 Security for Remote Work

Cloud Security DEMYSTIFIED!

Demystifying Microsoft 365 Licensing

Microsoft Modern Work 2021 Security

Azure AD App Security: Safeguarding Service Principals for Smooth & Secure Automation – April 2...

Demystifying the Microsoft Modern Workplace

Demystifying AI in Microsoft 365

Unlocking The Power Of Temporary Access Pass In Microsoft Entra ID! | Peter Rising MVP

Yubico & Microsoft: Phishing-resistant MFA solutions for the win

Discover The Top Authentication Methods In Entra ID | Peter Rising MVP

Demystifying the Microsoft Defender Series | Pax8 - TECHnically Unraveled

Microsoft 365 Tenant Security: Conditional Access und Desired State Configuration

M365 Security with Entra

Microsoft Security Exposure Management Public Preview: A Comprehensive Overview | Peter Rising MVP

Hardware Token für Mehrfaktor-Authentifizierung in Azure und Microsoft 365 nutzen

Secure Modern Workplace with Microsoft 365 Advanced Threat Protection

Uncover The Secrets Of Entra ID Conditional Access: A Must-watch | Peter Rising MVP