Multi-Factor Authentication for Dynamics 365 Business Central
When using Azure Active Directory authentication with Business Central, we recommend you take advantage of Azure AD Multi-Factor Authentication (MFA). MFA further safeguards access to the application and data. It delivers single sign-on authentication through a range of verification options, like:
- Phone call
- Text message
- Mobile app notification
- One-time password
It can be used both on-premises and in the cloud to add security for accessing Microsoft online services, remote access applications, and more. For more information, see the Azure Multi-Factor Authentication documentation.
Conditional access support
Conditional Access in Azure Active Directory provides a more granular control of MFA through policies that specify specific Cloud applications that require MFA. When creating Conditional Access policies, consider the following information:
For Business Central online, you can't select Business Central as a Cloud app. The only way to include Business Central is to select All Cloud Apps for the policy.
For Business Central on-premises, you assign Business Central as a Cloud App by selecting the Azure AD app registration that's used for Business Central authentication.
For more information about creating policies, see Conditional Access: Cloud apps, actions, and authentication context.