Update: October 25, 2022: Microsoft has made number matching and additional context generally available. Thirty minutes of administrator work will improve user security (including the time to read the instructions).
I think all Microsoft 365 tenants should consider enabling number matching and additional context as soon as possible. A November 18 blog by Microsoft VP Alex Simons, one of the TEC 2021 keynote speakers, reveals two new features for the Microsoft Authenticator app. Microsoft is doing its best to remove basic authentication for Exchange Online by October 2022, an effort which I believe will help tenants protect user accounts better, even if it comes with some pain to upgrade clients, apps, and so on.Īnother part of the puzzle is to improve the way MFA works to make it easier and more secure. Password spray attacks can steal user credentials and lead to tenant compromise. At the danger of sounding like a broken record, basic authentication is a horrible thing to use for cloud accounts. I’m a big fan of using multi-factor authentication (MFA) to protect Azure AD accounts.
Updating the Authenticator Configuration with the Graph ExplorerĪdd Number Matching and Additional Context to the Microsoft Authenticator App.Updating Additional Context and Number Matching Through the Azure AD Admin Center.Add Number Matching and Additional Context to the Microsoft Authenticator App.
0 kommentar(er)
