Microsoft 2-Factor Authentication (2FA)

Microsoft 2-Factor Authentication (2FA)

2FA Requirements for All Customer Contacts

We require that all customers purchasing Microsoft 365 through us use 2FA. 

When we add a new user to a 365 tenant, we always turn on enforced 2FA. Through Autotask, the user receives a notification with instructions to complete the 2FA setup. The user is sent this link as part of those instructions: 

Shared Logins


It is possible to have two users or more sharing the same login using Microsoft  FA.  Each user would set up their own authentication using an authenticator app on their phone. 

However, a better way to do this would be to use a product called Duo which manages 2FA for each user.  It is really more designed for this kind of scenarios in Microsoft’s option is. One of the many advantages of this is that if an employee leaves the company, you don’t have to worry about them taking access with them. We control everything from our central dashboard.

 

Duo requires Azure P1  for each user. 

 

The Microsoft method is free but it’s not as secure and efficient when trying to share logins.

Here’s some additional info on Duo: 

https://geekgirlsit.com/duo-faq/