Microsoft Learn source article: https://learn.microsoft.com/en-us/entra/identity/role-based-access-control/security-emergency-access This guide was originally written as an internal guide for infrastructure consultants to configure for customers. However I felt the need to share this approach, since break-glass is a concept widely debated, but very important to configure. I do also recommend the use of a direct partner of Microsoft, that can …
Continue reading Manage emergency access accounts in Microsoft Entra ID (Break glass)
Category:Conditional Access
Require Multifactor Authentication to register or join devices with Microsoft Entra
In Entra ID under Devices, All Devices and then Device Settings, you can enable: Require Multifactor Authentication to register or join devices with Microsoft Entra. However Microsoft recommends disabling this feature (enabled by default) and enforcing via a conditional access policy instead. This guide provides 2 ways of achieving that goal. Method 1: This method …
Continue reading Require Multifactor Authentication to register or join devices with Microsoft Entra
Migration to Converged Authentication Methods
Intro This guide will assist in the proces of migrating from legacy MFA and legacy SSPR, to the new converged authentication methods. On September 30th, 2025, the legacy multifactor authentication and self-service password reset policies will be deprecated and you’ll manage all authentication methods in the authentication methods policy. NoteAfter all authentication methods are fully …
Continue reading Migration to Converged Authentication Methods