Multi-Factor Authentication for Dynamics 365 Business Central

When using Azure Active Directory authentication with Business Central, we recommend you take advantage of Azure AD Multi-Factor Authentication (MFA). MFA further safeguards access to the application and data. It delivers single sign-on authentication through a range of verification options, like:

  • Phone call
  • Text message
  • Mobile app notification
  • One-time password

It can be used both on-premises and in the cloud to add security for accessing Microsoft online services, remote access applications, and more. For more information, see the Azure Multi-Factor Authentication documentation.

Conditional access support

Conditional Access in Azure Active Directory provides a more granular control of MFA through policies that specify specific Cloud applications that require MFA. When creating Conditional Access policies, consider the following information:

  • For Business Central online, you can't select Business Central as a Cloud app. The only way to include Business Central is to select All Cloud Apps for the policy.

  • For Business Central on-premises, you assign Business Central as a Cloud App by selecting the Azure AD app registration that's used for Business Central authentication.

For more information about creating policies, see Conditional Access: Cloud apps, actions, and authentication context.

See Also

Security and Protection
On-Premises Security