Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,437 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 20%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
Hi @Emanuele Signorin ,
Thanks for reaching out.
As per my understanding, you are trying to delegate the rights to upload new OATH hardware tokens.
To enable Multi-Factor Authentication blade, user should have at least below privileges:
- User have at least an Azure AD Premium P1 or trial license enabled for working Azure Active Directory.
- An account with Authentication Policy Administrator to enable software token authentication or global administrator privileges for hardware token authentication.
Currently OATH hardware token is in preview that allows the Global Admin to perform bulk upload of tokens by uploading the CSV file which contains the UPN, Serial number, secret key, etc. A Global Admin can activate a maximum of 200 OATH tokens every five minutes.
Reference : OATH-hardware-tokens-preview
Hope this helps.
Thanks,
Shweta
---------------------------------------
Please remember to "Accept Answer" if answer helped you.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 52%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)