Strict MFA

Vivek Chaturvedi 20 Reputation points
2023-08-16T12:21:36.91+00:00

Hi Team,

Is it possible that we can strict 2fa authentication to go through Microsoft app published under work profile only and not from external google authenticator / Microsoft authenticator or any other auth app saved in phone or browser extension.. rest except work profile auth app needs to be blocked.

Thank you,

Microsoft Authenticator
Microsoft Authenticator
A Microsoft app for iOS and Android devices that enables authentication with two-factor verification, phone sign-in, and code generation.
6,661 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,463 questions
0 comments No comments
{count} votes

Accepted answer
  1. 2023-09-19T09:52:45.75+00:00

    Hello

    Yes, it is possible to restrict 2FA authentication to go through the Microsoft Authenticator app published under a work profile only. This can be achieved by managing user consent to apps in Microsoft 365.

    In the Microsoft 365 admin center, you can go to the Settings > Org settings > Services page, and then select User consent to apps. On the User consent to apps page, you can select the option to turn user consent on or off. This allows you to control which apps users can consent to and use.

    However, it’s important to note that this might not completely block external authenticators like Google Authenticator or other authentication apps saved in phone or browser extensions. These settings are typically managed at the organization level and may require additional configuration or policy enforcement.


0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.