Why No Detail in MFA Request Windows?

Question

Why No Detail in MFA Request Windows?

Simon Parkinson 1

Several times a day, I see screen like this pop-up:

Often, it's because I just signed into a service and that's fine as I know where that request came from. However, sometimes I'll be in the middle of writing an email and will see that pop-up appear and I have no idea where it is coming from. Many people will acknowledge this without thinking and that can create all sorts of security issues.

There is no detail in the MFA pop-up. Is this request from Azure, Outlook, Teams or Sharepoint? Where is it coming from, my home town or a basement in Belarus? We need to see more detail on this prompt to make sure we are authorizing appropriately. No GUIDS, no machine references, just plain information, so the average user can make an informed decision to authorize or not.

Something like this:

I can look at that and see my Outlook 365 has expired. I now check my Outlook and see "Needs password" in the client footer and know it is valid.

Now if I see something like this:

I can ignore it and alert my security staff. The simplest of additions informs the user as to what the authorization involves. To me, this is a brain dead simple addition that would return LOTS of value, especially to the non-technical staff members.

Dillon Silzer 57,831 Reputation points Volunteer Moderator

2022-11-15T15:56:48.94+00:00

Hi @Simon Parkinson

The best way to get this feedback to the right team is through the Feedback portal. I'd recommend posting this on the Azure Active Directory (Feedback) portal to get it to their team:

https://feedback.azure.com/d365community/forum/22920db1-ad25-ec11-b6e6-000d3a4f0789

This is a community support forum and thus we cannot assist with adding new features. Hopefully this helps.

-----------------------------------------

If this is helpful please accept answer.
Subhash Sharma 676 Reputation points Microsoft Employee Moderator

2022-11-21T11:03:32.317+00:00

Hello @Simon Parkinson
Just checking in to see if below answer provided helped. If this answers your query, please don’t forget to click "Accept the answer" and Up-Vote for the same, which might be beneficial to other community members reading this thread.
JamesTran-MSFT 36,911 Reputation points Microsoft Employee Moderator

2022-12-09T23:22:25.753+00:00

@Simon Parkinson
I just wanted to check in and see if you had any other questions or if you were able to resolve this issue?

If you have any other questions, please let me know.
Thank you for your time and patience throughout this issue.

----------

Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.

1 answer

Your answer

Dillon Silzer 57,831 Reputation points Volunteer Moderator

2022-11-15T15:56:48.94+00:00

Hi @Simon Parkinson

The best way to get this feedback to the right team is through the Feedback portal. I'd recommend posting this on the Azure Active Directory (Feedback) portal to get it to their team:

https://feedback.azure.com/d365community/forum/22920db1-ad25-ec11-b6e6-000d3a4f0789

This is a community support forum and thus we cannot assist with adding new features. Hopefully this helps.

-----------------------------------------

If this is helpful please accept answer.
Subhash Sharma 676 Reputation points Microsoft Employee Moderator

2022-11-21T11:03:32.317+00:00

Hello @Simon Parkinson
Just checking in to see if below answer provided helped. If this answers your query, please don’t forget to click "Accept the answer" and Up-Vote for the same, which might be beneficial to other community members reading this thread.
JamesTran-MSFT 36,911 Reputation points Microsoft Employee Moderator

2022-12-09T23:22:25.753+00:00

@Simon Parkinson
I just wanted to check in and see if you had any other questions or if you were able to resolve this issue?

If you have any other questions, please let me know.
Thank you for your time and patience throughout this issue.

----------

Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.

Answer 1

Hello @Simon Parkinson
Thank you for reaching out. Based on the details shared by you I see that you would like to get additional details about the MFA request.

Please note that you can enable additional context from Microsoft Authenticator settings in portal to show application name and geographic location in push and passwordless notifications.
After enabling this when a user receives a passwordless phone sign-in or MFA push notification in Microsoft Authenticator, they'll see the name of the application that requests the approval and the location based on the IP address where the sign-in originated from.
Ex,

For steps to enable additional context in Microsoft Authenticator please review the below article.
How to use additional context in Microsoft Authenticator notifications - Authentication methods policy

Additionally, if you would like to request for purpose to be added in the MFA requests then please submit a feature request here.

I hope this answers your query.

---------
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

Share via

Why No Detail in MFA Request Windows?

1 answer

Your answer