Category Archives: Multi-Factor Authentication
Multi-Factor Authentication Server version 8.1.9.1 offers improved migration abilities
On June 15th, 2023, Microsoft released version 8.1.9.1 of its Azure MFA Server product that allows organization to add multi-factor authentication to RADIUS-, AD FS-, IIS-based and other on-premises authentication scenarios. Note: Currently, Microsoft no longer offers Azure Multi-Factor Authentication Server on-premises ("MFA Server") for new deployments and trial tenants. Existing Azure MFA Server deployments […]
A recent Microsoft change might prompt you to reconsider guest access policies
While Active Directory and AD FS admins may feel that they are on top of things as new Operating Systems versions only typically appear every 3 years. However, when adding Azure AD to the mix, a constellation emerges where the change rate of Azure AD may suddenly wreak havoc… A recent change Recently, Microsoft […]
Existing Azure MFA Server deployments stop working starting September 30, 2024
Microsoft announced the final stage of deprecating Azure Multi-Factor Authentication (MFA) Server. Deprecating Azure MFA Server Deprecating a crucial element in crucial processes for organizations is not something that Microsoft takes lightly: Since MFA Server 8, released on April 10, 2018. MFA registrations for the Authenticator app flow through the Azure MFA infrastructure instead of […]
Multi-Factor Authentication Server version 8.1.1.1 offers migration functionality to seamlessly switch to Azure MFA
On August 30th, 2022, Microsoft released version 8.1.1.1 of its Azure MFA Server product that allows organization to add multi-factor authentication to RADIUS-, AD FS-, IIS-based and other on-premises authentication scenarios. What’s New The release notes mention one change: MFA Server Migration Utility Public Preview The MFA Server Migration Utility helps synchronize multi-factor authentication registrations […]
Manage the use of your AD FS MFA Adapter towards Azure AD with the new federatedIdpMfaBehavior setting
Last month, Microsoft introduced a new setting in Azure AD to protect against by-passing of Azure MFA for organizations who have federated between Azure AD and their on-premises environment. In most cases, organizations who have federated one or more DNS domains with Microsoft 365 (and thus Azure AD) use AD FS to host the ‘Microsoft […]
Requirements to use Passwordless Phone Sign-in for multiple Work or School accounts
This week, Microsoft announced the availability of Passwordless Phone Sign-in for multiple Work or School accounts in the Microsoft Authenticator app on Apple iOS-based devices. For the Public Preview of this feature, meet the following requirements to be able to use the Authenticator App for Passwordless Sign-ins to multiple Work or School accounts during the […]
Multi-Factor Authentication Server version 8.0.8.1 is here
On March 16th, 2022, Microsoft released version 8.0.8.1 of its Azure MFA Server product that allows organization to add multi-factor authentication to RADIUS-, AD FS-, IIS-based and other on-premises authentication scenarios. What’s New The release notes mention one change: Microsoft fixed an issue with IIS Authentication passed sessions to User Portal. Known Issues Windows Authentication […]
Multi-Factor Authentication Server version 8.0.7.1 fixes an issue with One-Way SMS Performance
After 8 months, it’s time for an update to Microsoft’s product that allows organization to add multi-factor authentication to RADIUS-, AD FS-, IIS-based and other on-premises authentication scenarios. Last week, Microsoft released version 8.0.7.1 of it’s Azure MFA Server as an update to Azure MFA Server version 8.0.6.1. What’s New The release notes mention one […]
KnowledgeBase: Windows Hello for Business satisfies Smartcard is required for interactive logon requirements
One of the main strategies for securing privileged accounts in Active Directory Domain Services seems to enable the Smartcard is required for interactive logon option on members of the Domain Admins security group. Typically, that required deploying (virtual) smartcards, but there is a far easier way that is currently being wildly adopted: Windows Hello for […]
TODO: Migrate from Azure MFA Server to Azure multi-factor authentication
This week, Microsoft made available guidance to migrate from Azure MFA Server to Azure multi-factor authentication (Azure MFA). While Microsoft officially still supports its on-premises Azure MFA Server product, the reality for organizations using MFA Server for multi-factor authentication purposes is harsh: Since MFA Server 8, released on April 10, 2018. MFA registration for the […]
Login