Get more information in Microsoft Authenticator notifications
Using MFA with Microsoft Authenticator, we can only see the username. It woulde be useful get also the application and the devices that is requesting the approval. It is difficult to determine if it is right when multiples applications are in use (Outlook, OneDrive, Skype...)
Chris Ellery commented
The lack of information in the MFA notifications is really concerning and a risk to security.
How can a user be sure to approve an MFA request on their device if they aren't given the information to verify it was them. Please add Location and Application name to these notifications asap.
More info would be extremely helpful. Our user base has MFA fatigue and sometimes blindly approves push notifications which allows back actors into their accounts. If the notification included location info, the user may stop and think about it.
Ridiculous. I have some device/app that seems to want to reauthenticate when I change networks, e.g. travel from home to office. It happens while devices are still in my bag and I'm not actively using them. Amazon can do it by txting details and a link. I understand geolocation of request is rubbery, but surely you could give SOME detail of what the request is...
Jeremy Weisser commented
I’ve head that this is coming for some time but other services offer it already. This is very important, multi factor authentication without it actually makes things more dangerous.
Kane, Esmond commented
Theres a similar request over on the O365 uservoice here:
We need a way to see if a fake login tried to convince the user to do second factor authentication.
Michael Judd commented
I would also add location. City, state, country