Skip to main content

Know everything about the Multi-Factor Authentication (MFA). Learn to disable or enable it.

Nelson Brizuela
  • Updated

Multi-Factor Authentication (MFA) is a security feature in Microsoft 365 that helps protect user accounts by requiring more than just a password to sign in. It adds an extra layer of security by asking users to verify their identity using a second factor, such as a mobile app, SMS code, or phone call.

 

How the Multi-Factor Authentication actually works:

  1. User enters password: The first step is entering the usual Microsoft 365 password.

  2. Additional verification: The system prompts for a second authentication method, such as:

    • A code sent via SMS or email.

    • A notification from the Microsoft Authenticator app.

    • A phone call with a verification prompt.

 

Know about the benefits:

  • Enhanced security: Protects against unauthorized access, even if a password is compromised.

  • Flexible authentication methods: Users can choose between different verification options.

  • Compliance support: Helps meet security requirements for organizations handling sensitive data.

 

How to enable in Microsoft 365:

  1. Sign in to the Microsoft Entra Admin Center.

  2. Navigate to Identity > Overview > Properties.

  3. Select Manage Security Defaults and enable MFA.

  4. Save changes and instruct users to set up their preferred authentication method.

 

For a detailed setup guide, check out Microsoft's official documentation: Set up multifactor authentication for users - Microsoft 365 admin | Microsoft Learn

 

Also, if there is needed you can disable Multi-Factor Authentication (MFA) in Microsoft 365 through the Microsoft Entra Admin Center. Here’s how:

 

Method 1: Disable MFA for all users

  1. Sign in to the Microsoft Entra Admin Center.

  2. Navigate to Identity > Overview > Properties.

  3. Click Manage Security Defaults.

  4. Set Security Defaults to Disabled.

  5. Click Save.

 

Method 2: Disable MFA for specific users

  1. Go to the Microsoft 365 Admin Center.

  2. Navigate to Users > Active Users.

  3. Select the user whose MFA you want to disable.

  4. Click Manage Multi-Factor Authentication.

  5. Select the user again and choose Disable Multi-Factor Authentication.

 

Method 3: Disable MFA via conditional access

  1. Sign in to the Azure Portal.

  2. Go to Azure Active Directory > Security > Conditional Access.

  3. Select the policy enforcing MFA.

  4. Disable the policy or exclude specific users.

  5. Click Save.

Related articles

Comments

0 comments

Please sign in to leave a comment.