Bjorn L

My feedback

  1. 318 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Bjorn L commented  · 

    For on-prem AD, WHfB is not an easy or end-user friendly. Have a POC running for the last months, biometrics are not always working and needs to be purchased to our PC desktops. RDP is also used which complicates it further.

    Windows 10 + PIN + MFA (Microsoft Authenticator) would awesome. With full RDP support. First then we can adhere to the "new" password best practices.

    Bjorn L supported this idea  · 
  2. 1 vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Bjorn L shared this idea  · 
  3. 8 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Bjorn L supported this idea  · 
  4. 814 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Bjorn L commented  · 

    @Azure AD Team, 13 months later and our Helpdesk staff STILL needs to be Global Admin in order to do their job. Is there a time estimate on this? Thanks.

  5. 41 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Bjorn L commented  · 

    Agreed. If it can be done in a safe manner. We have a powershell script with a GUI to activate the roles. It works, but we also get an high alert that roles was activated outside Azure portal.

    This should either be fixed or blocked.

  6. 62 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    17 comments  ·  Azure Active Directory » Domain Join  ·  Flag idea as inappropriate…  ·  Admin →
    Bjorn L supported this idea  · 
  7. 81 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    We aren’t planning to add the ability to enable MFA per-user to the Account Administrator, but we do have planned a limited admin role that will be able to perform that function, along with other MFA related settings. If you’ve implemented MFA through Conditional Access policy instead of the per-user enablement, you can use the Conditional Access Policy admin to control who has to do MFA.

    Bjorn L commented  · 

    Please fix this. We obviously cannot give Helpdesk Global Admin role.

    Bjorn L supported this idea  · 

Feedback and Knowledge Base