Forum Discussion
MFA Rollout Question(s)
Hi All
I hope you are well.
Anyway, I'm normally more active in the Intune space but I have been tasked with rolling out MFA to a lot of non technical users.
One of the questions is:
What if I forget my phone with the MS Authenticator app on it?
I can't seem to find any documentation or clear answer to this.
Any ideas?
SK
To address users losing access to MFA via Microsoft Authenticator:
-> Set up backup methods (SMS, email, or office phone).
-> Use Temporary Access Pass (TAP) for emergencies.
-> Admins can reset MFA or use break-glass accounts.
-> Educate users and provide a simple guide.
Link: https://learn.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-userdevicesettings
They can use any other MFA method configured, and if none are available, an admin can activate TAP as a temporary option: https://learn.microsoft.com/en-us/entra/identity/authentication/howto-authentication-temporary-access-pass#create-a-temporary-access-pass
Hi Buddy
Many thanks for your prompt and very informative reply.
I'll get a look.
Stuart
