Microsoft wants to take any MFA and 2FA worries out of your hands

Microsoft is bossing you about when it comes to MFA

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

Microsofthasunveiledplans to take the decision on which authentication method to use out of your hands, instead offering prompts based on security levels.

Having alreadywrittenabout the disadvantages of using SMS and voice-based multi-factor authentication (MFA) methods, citing social engineering, mobile operator performance, technical evolution, and more, Microsoft VP Director of Identity Security, Alex Weinert, has now alluded to more secure approaches.

Weinert explained users typically opt for less secureMFAmethods despite having access to better options out of convenience, technical limitations, or simply a lack of awareness.

Microsoft MFA methods

With the change, users that have registered more than oneauthentication methodwill be prompted to sign in with the most secure. Out of SMS and a Microsoft Authenticator push notification, the system will choose the latter, though users will still be able to use the non-preferred method if their circumstances require it.

These are the best password managers around>Microsoft Authenticator is dropping Apple Watch support>Google Authenticator is fixing a problem that should help all users at last

Aninstruction pagehas been set up to guide system admins to set up system-preferred multi-factor authentication via the Azure Portal and via GraphAPI.

Having rolled out to come users on an automatically disabled basis already, it will now begin to roll out more widely, and automatically enabled. At some point, Microsoft will remove the option to disable system-preferred MFA altogether, though a timeline for this isn’t expected to be publicized for a few weeks.

Weinert says: “To best secure your organization and its end users, we highly encourage you to use the rollout controls and deploy this new feature as soon as you can. It’s now available in your tenant, making it easy to ensure users always use the most secure authentication method first.”

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

With several years’ experience freelancing in tech and automotive circles, Craig’s specific interests lie in technology that is designed to better our lives, including AI and ML, productivity aids, and smart fitness. He is also passionate about cars and the decarbonisation of personal transportation. As an avid bargain-hunter, you can be sure that any deal Craig finds is top value!

Cisco issues patch to fix serious flaw allowing possible industrial systems takeover

Washington state court systems taken offline following cyberattack

Another reason to avoid edge-lit 4K TVs: they may fail faster than others, according to this report