Users who have Microsoft Authenticator downloaded on the same device Outlook is downloaded on will not be prompted to register for Authenticator Lite in Outlook. Users who aren't enabled for Microsoft Authenticator can't see the feature. Only users who are enabled for Microsoft Authenticator here can be enabled to use Authenticator Lite for sign-in, or excluded from it. Set the Authentication mode for these users/groups to Any or Push. On the Enable and Target tab, click Yes and All users to enable the policy for everyone or add selected users and groups. In the Entra admin center, on the sidebar select Azure Active Directory > Protect & Secure > Authentication methods > Microsoft Authenticator.
In the Azure portal, click Azure Active Directory > Security > Authentication methods > Microsoft Authenticator. To enable Authenticator Lite in the Azure portal, complete the following steps: Enablement Authenticator Lite in Azure portal UX After general availability, the Microsoft managed state default value will change to enable Authenticator Lite. Operating systemīy default, Authenticator Lite is Microsoft managed and disabled during preview. Users must run a minimum Outlook mobile version. Users enabled for shared device mode on Outlook mobile aren't eligible for Authenticator Lite. If your organization is using the Active Directory Federation Services (AD FS) adapter or Network Policy Server (NPS) extensions, upgrade to the latest versions for a consistent experience.
With system-preferred MFA enabled, users try to sign-in with Authenticator Lite before they try less secure telephony methods like SMS or voice call. We recommend that you also enable system-preferred multifactor authentication (MFA) when you enable Authenticator Lite.
0 kommentar(er)
