Microsoft Authenticator App: Improve security with number matching
The use of multi-factor authentication is considered one of the most secure methods to protect an account and is therefore recommended by pretty much every provider by now. Due to this fact, the user receives many multi-factor authentication requests every day, which are probably no longer considered carefully and are approved out of habit.Microsoft introduces number matching, a method that can prevent blind approval of the request. For existing users with the Microsoft Authenticator App, number matching will be enabled by default on February 27, 2023.The following tutorial will immediately enable number matching and therefore increase login security.
Microsoft Authenticator App: Improve security with app and location information
Multi-Factor Authentication improves security of every identity. Microsoft is working constantly to improve the security of their Microsoft 365 and Microsoft Azure accounts. A new feature has been added to the Microsoft Authenticator App, which displays additional information in multi-factor authentication approval requests:
Disabling Basic Auth: Microsoft 365 SMTP Relay for Non-TLS Devices
As of October 1, 2022, basic athentication (legacy authentication) will be disabled for EWS, RPS, POP, IMAP, MAPI, RPC, OAB, SMTP AUTH, and EAS protocols in Exchange Online. The basic authentication is a big security issue, since a user name and password are already sufficient for sign in. After deactivating basic authentication, modern authentication (based on OAuth 2.0) becomes active. Modern authentication requires a second factor (multi-factor authentication).
Installation and Configuration of Microsoft Entra Cloud Sync
Microsoft Entra Cloud Sync is an advanced synchronization solution that enables seamless integration of objects from Active Directory into Microsoft Entra ID. This technology simplifies synchronization by orchestrating the deployment of Active Directory objects within Microsoft Entra ID in the Microsoft Cloud Services. For the on-premises infrastructure, only the installation of a lightweight agent is required, reducing complexity and enhancing efficiency.
Review and remove inactive users from Microsoft 365 groups with Access Review
Permissions for Microsoft 365 groups or applications can change constantly. This makes the effort of checking permissions time-consuming and inefficient. With the Azure Active Directory feature “Access Review”, this task can be largely automated and inactive users and guests can be removed from the Microsoft 365 groups and applications with just a few clicks.
Passwordless Sign In with Microsoft Authenticator App
Passwordless sign in with the Microsoft Authenticator App makes sign in to Azure and Microsoft 365 cloud services more secure and convenient for the user. The typing of a password is replaced by a modern method, e.g. the Microsoft Authenticator app. Passwordless sign-in to cloud apps can be achieved using various methods: For a significant increase of identities security, the cost-effective variant with the Microsoft Authenticator App is the best choice.