SYSTEM ADMIN BOOK
  • Hardware/Physical Machines
    • Physical Networking
      • Patch Panel
    • Hardware Devices
    • PC Build
  • System Configuration
    • Windows
      • OneDrive for Business, Map as Network Drive in Windows
      • PDF Printer
      • Reset Windows Password
    • Linux
    • Mac
      • Factory Reset Mac Mini
      • Install FortiClient VPN
      • Remove FortiClient VPN for Macs
      • Setting Microsoft Teams Notifications in MacOS
      • Download and Install Whatsapp
  • Windows Server
    • Basic Configurations
      • Change Hostname
      • Change Default RDP Port
      • Create a User
      • Add user to Administrator group
      • Add user to Remote Desktop Users group
      • Allow Multiple Remote Desktop Connections
      • Enable Insure Guest Authentication
      • Shrink Partition
      • Extend Partition
    • FTP Server
      • Install FTP Server (IIS)
      • Create User Group
      • Add FTP Site (IIS)
      • User Isolation
      • Allow Firewall
      • FTP Client (FileZilla)
      • FTP Server (FileZilla)
      • Configure Passive Mode in FileZilla Server
      • Configuring Windows Firewall for FileZilla Server
      • FileZilla: Password reset
    • Group Policy
      • Block Access to the Control Panel for All Users
      • Create a Logon Banner (Legal Notice)
      • Enable / Disable Copy-Paste Policy
      • Disable Shutdown, Restart Options
      • Disable Multiple Session for Single User
    • Services
      • NSSM - the Non-Sucking Service Manager
    • Task Scheduler
  • Control Panels
    • Plesk
      • Set Hard Quota on disk space for subscription(s)
      • Changing MX, A, and CNAME Records
      • Host Node.js Application
      • Add FTP account
      • Remove FTP account
    • SolidCP
    • cPanel
  • Virtualization
    • Proxmox VE
      • Introduction
      • Download Proxmox ISO
      • Prepare Installation Media
      • Launch Proxmox Installer
      • Create a VM
  • Web Servers
    • IIS
      • Install IIS
      • Configure Default Site
      • Application Pool
      • Installing PHP
      • Deploying a Laravel app on Windows using IIS
      • Update PHP Version in IIS
  • VPN/Proxy Servers
    • Reverse Proxy
      • IIS - Node.js Application
  • Database Servers
    • MS SQL
      • Download and Install
      • Install SSMS
      • Enable SA Account
      • Change SA Account Password
      • Enable Network Access to SQL Express
      • Create and configure a user in MSSQL
  • Web Dev Stacks
  • IT Ticketing Systems
    • Jira Ticketing System
  • Linux Servers
  • AWS Environment
  • Azure Environment
  • Backup and Security
    • SSL Certificates
      • Types of SSL Certificates
      • IIS 10: Create CSR and Install SSL Certificate
      • IIS 7: Generate CSR for Wildcard SSL
      • IIS: Generate CSR for Multi-Domain SSL
      • OpenSSL: Generate CSR
      • IIS 10: How to Install and Configure Your SSL Certificate on Windows Server
      • IIS: Export Pfx using MMC
      • IIS: Import Pfx using MMC
      • IIS: Export Pfx using IIS Manager
      • IIS: Import Pfx using IIS Manager
      • cPanel: Export PFX
      • Godaddy-CPanel: Generate a CSR
      • Godaddy-CPanel: Install SSL Certificate
      • cPanel: Generate CSR
      • cPanel: Install SSL Certificate
      • cPanel: Install Let's Encrypt SSL
      • Plesk: Generate CSR
      • Plesk: Let's Encrypt SSL Installation
      • Plesk: Installing the SSL certificate
      • Plesk: Export Public & Private Key
      • Win-ACME Let's Encrypt SSL
      • Certbot - Install SSL
      • Export Leaf, Root, and Intermediate Files
    • Backup
      • Database
        • MS SQL DB Backup
        • MS SQL Restore Backup
    • Microsoft Defender for Endpoint
      • Introduction & Licenses
  • Email and Office 365
    • Troubleshooting
      • Run a message trace in the Exchange admin center
      • Not receiving email
      • Office 365 Apps Activation Error
    • Mail Clients
      • Outlook
        • Maximum number of Exchange accounts in an Outlook profile
        • Enable automatic forwarding in new Outlook
        • Add Email Signature
        • Create Email Singature
        • Gmail Account Login in Outlook
      • Apple Mail
        • Add email accounts in Mail on Mac
        • Add Mail Signatures
    • Office 365
      • Intro & Subscriptions
      • How to Create a Trial Account
      • How to Access the Office 365 Admin Center
      • Creating a Tenant
      • Create Users
      • Creating & Managing Roles
      • Add a Domain
      • Manage MFA
      • Assign Global Admin Roles
      • Create APP Password
      • Change a user name and email address
      • Reset MFA for Microsoft 365 User
      • Configure email forwarding
      • Add email aliases to a user
      • Change Username or Email Address
    • Google Workspace
      • Intro & Plans
      • Create your Google Workspace trial account
      • Review your DNS records
      • Adding Users
      • Create organizational units
      • Restrict access to a Google Workspace service
      • Edit user attributes
      • Manage user accounts
      • Suspend a User
      • Generate a Transfer Token
      • Reduce Licenses in Google Workspace
    • MailEnable
    • SmarterMail
      • SmarterMail Installation
      • SmarterMail Server Setup
      • Installation and Configuration (Practical)
      • Enable / Disable Domain in SmarterMail
    • Microsoft Teams
      • Guest Access vs. External Access
      • Adding Guests To Microsoft Teams Team
      • Teams Chat DIfferent Domain: Enable External Access
      • Setup Teams Time Zone and Work Hours
      • Add Contact Numbers in Profile Page
    • Microsoft Defender for Office 365
      • Remove blocked users from the Restricted entities page
  • DevOps
  • Firewalls
    • Windows Firewall
  • Networking
    • Cisco Router Config
    • Cisco Switch Config
      • Basic Data and Voice VLAN Setup Homelab
  • Migration
    • Drive Migration
      • Google Drive to One Drive
    • Mail Migration
      • Google Workspace to Office 365
      • IMAP to Office 365
      • Migration Using PST File Method
    • VM Migration
    • Website Migration
    • Database Migration
  • Monitoring
    • Prometheus
      • Monitoring Windows Servers Using Prometheus
    • Grafana
      • Visualize Data in Grafana
    • Loki
  • Data Center
  • Other Technologies
    • Some R&Ds
      • Active vs. Passive Mode in FTP
      • IIS Recycling and Virtual Memory Limit
      • IIS Application Pool
Powered by GitBook
On this page

Was this helpful?

  1. Email and Office 365
  2. Office 365

Manage MFA

PreviousAdd a DomainNextAssign Global Admin Roles

Last updated 2 months ago

Was this helpful?

Manage multi-factor authentication for users in Office 365

This article describes how administrators can manage multi-factor authentication for Office 365® users.

Prerequisites

  • Applies to: Administrator

  • Difficulty: Easy

  • Time Needed: Approximately 15 minutes

  • Tools Needed: Administrators need access to the Office 365 Control Panel

For more information about prerequisite terminology, see .

Requiring multi-factor authentication for all users safeguards access to your organization's data and applications. Multi-factor authentication requires users to provide a second form of authentication when accessing their account. This second form of authentication is an additional layer of security and minimizes the chances of account compromise.

Enable multi-factor authentication for a user

Use the following steps to enable multi-factor authentication for a user:

  1. Log in to your .

  2. From the left menu, select Office 365 Admin Center.

  3. From the top menu, select Multi-factor authentication.

  4. Select the check box next to the user you need to enable multi-factor authentication for.

  5. Under quick steps, select Enable.

  6. When you are prompted, select enable multi-factor auth.

  7. The selected user is now able to configure multi-factor authentication for their account.

Require a user to use multi-factor authentication

To require a user to use multi-factor authentication, you must enforce multi-factor authentication for their account.

Use the following steps to enforce multi-factor authentication for a user:

  2. From the left menu, select Office 365 Admin Center.

  3. From the top menu, select Multi-factor authentication.

  4. Select the check box next to the user you need to enforce multi-factor authentication for.

  5. Under quick steps, select Enforce.

  6. When you are prompted, select enforce multi-factor auth, then close.

  7. The selected user is now required to configure and use multi-factor authentication for their account.

Reset existing multi-factor authentication configuration for a user

Your user may lose access to the device that they used to register with multi-factor authentication. When this occurs, you need to reset their multi-factor settings so that they can re-register.

Use the following steps to reset the existing multi-factor authentication configuration for a user:

  2. From the left menu, select Office 365 Admin Center.

  3. From the top menu, select Multi-factor authentication.

  4. Select the check box next to the user you need to enforce multi-factor authentication for.

  5. Under quick steps, select Manage user settings.

  6. Select the check box next to Require selected users to provide contact methods again.

  7. Select save then close.

  8. The selected user can now log in to their Office 365 account and re-register with multi-factor authentication.

Disable multi-factor authentication for a user

Use the following steps to disable multi-factor authentication for a user:

  2. From the left menu, select Office 365 Admin Center.

  3. From the top menu, select Multi-factor authentication.

  4. Select the check box next to the user you need to disable multi-factor authentication for.

  5. Under quick steps, select Disable.

  6. When you are prompted, select yes, then close.

  7. The selected user is now no longer be able to use multi-factor authentication with their account.

Additional information

Log in to your .

Log in to your .

Log in to your .

Microsoft® also provides a guide for deploying multi-factor authentication for your Office 365 tenant. See .

Administrators can configure organization-wide multi-factor authentication requirements by creating a Conditional Access policy in their Azure® Active Directory® from the . See for instructions.

Suggest Edits
Cloud Office support terminology
Office 365 Control Panel
Office 365 Control Panel
Office 365 Control Panel
Office 365 Control Panel
Planning a cloud-based Azure Multi-Factor Authentication deployment
Azure Portal
Conditional Access: Require MFA for all users