Dan

My feedback

  1. 172 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Dan supported this idea  · 
  2. 299 votes
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)

    We’ll send you updates on this idea

    An error occurred while saving the comment
    Dan commented  · 

    The expiration of a registered device is like that of passwords. The industry has found that regularly expiring passwords is in fact less secure and so it is probably a matter of time before something like this is recognized in the same light.

    That said, I think the existing option is to leverage Intune and the Conditional Access method of enforcing MFA. We have been piloting Azure MFA enforced by Conditional Access for the past few months and this question has come up as the user experience was a concern. It has been difficult to explain to users why they get multiple MFA challenges on a single device. Luckily, we were evaluating Intune at the same time and plan to head that direction.

Feedback and Knowledge Base