Simple But a Powerful Entra Setting to Make MFA Prompts User Friendly

MFA Fatigue is real and at the same time an informed decision to complete an MFA authentication request is important. But the end user only knows so much about the difference between a legit prompt and an attacker-led MFA prompt after stealing their credentials (for an example). This Entra setting will take the guesswork out … Continue reading Simple But a Powerful Entra Setting to Make MFA Prompts User Friendly

Mandatory MFA Enforcements! Including Service Accounts and Break Glass Accounts. Now What?

Mark the calendars and make the necessary reminders - 15 Oct 2024 as this will be the day that this enforcement will come into play. This is a good initiative as it will apply the extra layer of protection to the set of applications below. As you can see most of the applications listed below … Continue reading Mandatory MFA Enforcements! Including Service Accounts and Break Glass Accounts. Now What?

Azure MFA Authentication Loop Fix

Issue: Office 365 Web apps users (SharePoint Online, Office.com, OWA etc.) will receive the MFA prompt every time after opening the browser.Ideally the browser should honor the “Stay signed in?” messages when there are no session lifetime settings configured.When the user click Yes, the persistent browser cookie will get saved and work for 90 days. … Continue reading Azure MFA Authentication Loop Fix