Andy
My feedback
-
1 voteAndy
shared this idea
·
-
97 votes11 comments · Azure Active Directory » Multi-factor Authentication · Flag idea as inappropriate… · Admin →
Today, you can use conditional access to enforce MFA on a per-group basis. This is Microsoft’s recommended enforcement model.
We will be updating the per-user enforcement of MFA to more closely match how conditional access works, but this is still in the design phase.Richard
An error occurred while saving the comment Andy
supported this idea
·
-
1,583 votes124 comments · Azure Active Directory » Groups/Dynamic groups · Flag idea as inappropriate… · Admin →
Thank you for your feedback! The feature team is aware of this suggestion and will keep it under consideration. There are technical challenges to overcome in order to make this happen. Please keep the votes coming if this feature matters to you.
Chen
An error occurred while saving the comment Andy
commented
How is this still not a feature??
Andy
supported this idea
·
Conditional Access policy does enable this, but many organizations utilize the essentials license and don't have legitimate access to that feature right now. There is security defaults which almost does this, but security defaults doesn't permit a Security Group to be added to the exceptions list so it destroys the functionality of any SMTP account. Most companies have at least a scanner with this, if not a few services and third party mailers also. Please do consider adding an exception group to the security default to resolve this!