Category: Microsoft 365 Page 4 of 5

Are you looking for information about Microsoft 365? In this archive you will find all our posts about Microsoft 365.

Passwordless sign in with the Microsoft Authenticator App makes sign in to Azure and Microsoft 365 cloud services more secure and convenient for the user. The typing of a password is replaced by a modern method, e.g. the Microsoft Authenticator app.

Passwordless sign-in to cloud apps can be achieved using various methods:

For a significant increase of identities security, the cost-effective variant with the Microsoft Authenticator App is the best choice.

Backup and Restore Microsoft Authenticator App

By Oliver Müller

On 30. April 2022

In Microsoft 365, Microsoft Azure

Using Multi-Factor Authentication (MFA) in conjunction with the Microsoft Authenticator app significantly increases identity security.

The Microsoft Authenticator app can store credentials from Microsoft services and others. A user does not need to install multiple applications for the same tasks.

But what happens if the mobile phone with the Microsoft Authenticator app is lost or replaced? Do all account information have to be re-registered manually?

Enable Microsoft Entra self-service password reset (SSPR)

By Oliver Müller

On 19. February 2022

In Microsoft 365, Microsoft Azure

Microsoft Entra self-service password reset (SSPR) allows users to change or reset the password on their own. It does not require support from the helpdesk.

To allow the user to change or reset the password, the following authentication methods are available for Microsoft Entra self-service password reset (SSPR):

Block Legacy Authentication with Azure AD Conditional Access

By Oliver Müller

On 12. February 2022

In Microsoft 365, Microsoft Azure

Widely used legacy authentication protocols such as POP, SMTP, IMAP or MAPI are now a serious security vulnerability and thus very popular with attackers.

The numbers on legacy authentication from one analysis are stark:
^{(Source: https://techcommunity.microsoft.com/t5/azure-active-directory-identity/new-tools-to-block-legacy-authentication-in-your-organization/ba-p/1225302#)}

More than 99 percent of password spray attacks use legacy authentication protocols
More than 97 percent of credential stuffing attacks use legacy authentication
Azure AD accounts in organizations that have disabled legacy authentication experience 67 percent fewer compromises than those where legacy authentication is enabled

Multi-factor authentication method analysis

By Oliver Müller

On 5. February 2022

In Microsoft 365, Microsoft Azure

For a security audit, it is necessary to check which multi-factor authentication method is enabled for each individual user in the Microsoft tenant.

The guide can also be used to make users aware of a multi-factor authentication method that may be more convenient for them than they currently have enabled.

The following are possible multi-factor authentication methods.:

Mobile App (Microsoft Authenticator)
Text message
Phone call

Category: Microsoft 365 Page 4 of 5

Passwordless Sign In with Microsoft Authenticator App

Backup and Restore Microsoft Authenticator App

Enable Microsoft Entra self-service password reset (SSPR)

Block Legacy Authentication with Azure AD Conditional Access

Multi-factor authentication method analysis