The story of Multi-Factor Authentication and the Azure MFA [Updated Feb 2017]

This blog post is moved to my new blog platform:

 

https://blog.ahasayen.com/azure-multi-factor-authentication-azure-mfa/

https://blog.ahasayen.com/multi-factor-authentication-as-a-service-model/

10 comments on “The story of Multi-Factor Authentication and the Azure MFA [Updated Feb 2017]

  1. Pingback: Azure Multi Factor Authentication – On Premise | Ammar Hasayen - Blog

  2. Pingback: Azure Multi-Factor Authentication “MFA” – Mobile App | Ammar Hasayen - Blog

  3. Pingback: Azure Multi-Factor Authentication Server Deployment – P2 | Ammar Hasayen - Blog

  4. Pingback: Azure Multi-Factor Authenticaion on premise – Tricks | Ammar Hasayen - Blog

  5. Pingback: Azure Multi-Factor Authentication Server Deployment – P1 | Ammar Hasayen - Blog

  6. Hi Ammar, which Visio symbol/icon set did you use for the Azure MFA Mobile App, SMS and Call images? It looks very nice!

  7. Hi Ammar,

    I wonder if you can help – in our scenario, Azure has SSPR information such as “Authentication Phone”. When we use MFA on premises server we need to add mobile number to user AD profile or manually add it to the user in MFA console.

    Bearing in mind Azure has mobile number already for each user is it possible to have the MFA server request Azure to simply call/text the number associated with the Azure AD Premium user?

    Our users do not want their mobile numbers visible in the Exchange GAL and I don’t really want to have (potentially) multiple authentication numbers for our users.

    If Azure has the info already it makes sense to use it.

    Any ideas appreciated.

    Andy

    • Hi..
      Let us try to go back..

      Microsoft has acquired a company that do multi factor authentication and they did some integration with azure web services to do the second factor authentication. The product in the first place is designed to pull information from AD or entered manually from the product management console.

      I did not think Microsoft has done a full development cycle on the product so that the product will connect to Azure AD and pull records their where phone numbers are. They just integrate the web services that perform the second factor.

      After all, this is not a pure fully build up product from Microsoft to expect such integration with azure.

      • Hi Ammar,

        Thanks for responding!

        Your answer makes perfect sense. I am hoping that as things evolve Microsoft integrate the on prem MFA details with the azure self service details. It would make sense to do this.

        I will keep an eye on things 🙂

        Cheers

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s