Disable "Windows Hello"
I am an admin, and attempting to disable "Windows Hello for Business" also referred to as 2-step authentication. From what I gather, this option is set as "disabled" by default. I confirmed this. However Whenever I join a device to Azure AD, it is always prompted with "Windows Hello" and to create a pin. Where can I find the option that allows me to disable this?
Login prompting for more information
I am the admin of the office 365 subscription for our small company, we do not have 2FA turned on, nor is it desired. Recently when attempting to login I am met with a screen stating "More information required Your organization needs more information to keep your account secure Use a different account" When I click next, I see a screen Enter code We texted your phone +X XXXXXXXXxx. Please enter the code to sign in. "This sends a text with a auth code to my cell phone" If I hit cancel, I am prompted with a screen requesting additional details with green checkboxes next to the information I've previously entered. I've checked all the setting in the admin portal, and 2FA is not enabled. I believe this is related to the fact that I had a microsoft account associated with my company email address before we switched over to office 365, as this issue only seems to effect those in my company who had a microsoft account previously. Anyone know to disable this, or to remove those person accounts associated with our work emails?Microsoft Entra ID (Azure AD) support for Passkeys
Hi, Has anyone seen any reference or blog as to when Microsoft Entra ID (Azure AD) will support Passkeys on iOS or Android devices and will this be classified as Phishing-Resistant MFA under Conditional Access Sign In policies. When you navigate to aka.ms/mysecurityinfo and attempt to enroll and new Security Key it now defaults to a QR Code to setup a Passkey and lets you go through the enrollment process however once you reach the final stage to give the Passkey a logical name under your account it prompts with an error message (see below). We have been using YubiKey as a FIDO2 Security Key for Phishing-Resistant MFA however as this is not supported for use with iOS and Android and has limited support for macOS we are hoping that Passkeys will be able to fill this gap. We have also explored Azure CBA however we do not have an existing PKI infrastructure and managing the lifecycle of certificates is painful and expensive compared to the cost of using a FIDO2 Security Key or Passkey.
List external users and their status
Hi all I desperately need a way to list all external Azure AD users including their status (if they have accepted the invitation or not), and it would be nice to be able to filter on domain. On TechNet I have found this PowerShell command: Get-SPOExternalUser -Position 0 -PageSize 30 -Filter @testsite.com It doesn't work though, because it doesn't accept the "@" and if I use the commend without filter, it doen't list information about the users invitational status. Another problem is that -PageSize can't exceed 50 - and we have hundreds of external users. Any suggestions? Thanks Jakob
