Write-Output $AllUsers | Sort-Object isAdmin, MFAEnabled -DescendingĪs always, please share your comments below on bettering the above script or any questions you may have.
$AdminUsers = Get-MsolRole -ErrorAction Stop | foreach The latter being even more crucial that MFA is enabled. The following script will report on your organizations MFA status per user and report on which users are admins. Multi-factor Authentication (MFA) is a great tool to ensure this however the task of knowing which user has it enabled can be tedious.Įnter PowerShell to the rescue to automate reporting of this process. This comes with new concerns surrounding identity protection and actually proving that remote users are who they say they are in order to be allowed access to organizational data.
Configure MFA in your Azure AD instance as described in the Microsoft documentation. Configure an app sign-on policy for your WS-Federation Office 365 app instance as described in Get started with Office 365 sign on policies. Security governance has been top of mind for most since the onslaught of human malware has the masses working from home. Configure an org-level sign-on policy as described in Multifactor Authentication.
0 kommentar(er)
