Enable Multi-Factor Authentication for your Organization

This article describes how to set up multi-factor authentication (MFA) for Office 365 users. You get a free version of Azure multi-factor authentication as part of your Office 365 for business subscription.

Enable MFA for your organization:

Modern authentication in Exchange Online enables authentication features like multi-factor authentication (MFA) using smart cards, certificate-based authentication (CBA), and third-party SAML identity providers.

  1. To enable modern authentication, from the admin center, turn on the new admin center by selecting Try the new admin center toggle located at the top of the Home page.

  2. Select Settings > Services & add-ins and then choose Modern authentication from the list.

  3. Check the Enable modern authentication box in the Modern authentication panel.Modern authentication panel with enable checkbox checked.

Set up MFA in the new Microsoft 365 admin center:

  1. In the admin center, turn on the new admin center by selecting the Try the new admin center toggle located at the top of the Home page.

  2. In the left navigation pane, select Setup.

  3. Under Setup > Turn on multi-factor authentication (MFA), select View.

  4. On the Turn on multi-factor authentication (MFA) page, select Get started.

  5. Select the Require multi-factor authentication and Require users to register for multi-factor authentication and block access if risk is detected check boxes.

  6. Under Do you want to exclude anyone from these policies, select any users that you want to exclude from the drop-down list box; you may want to exclude users like service accounts used by an automated service that cannot provide MFA tokens.

  7. Select Create policy. You will return to the Turn on multi-factor authentication (MFA) page, which will now say Completed.

Set up MFA in the old Microsoft 365 admin center:

  1. In the admin center, go to Users > Active users.

  2. IMPORTANT: BEFORE you select a user, select Multi-factor authentication from the drop-down list above the list of users. 

  3. On the multi-factor authentication page, find the people for whom you want to enable MFA. In order to see everyone, you might need to change the Multi-Factor Auth status view at the top.

  4. Select the check box next to the people for whom you want to enable MFA.

  5. On the right, under quick steps, you'll see Enable and Manage user settings. Select Enable.

  6. In the dialog box that opens, select enable multi-factor auth.

 

Click here for source and more information.


Did this help answer your question?

thumbs up
thumbs down

Thanks for the feedback! 🙏🏽