Office 365 Two-Factor Authentication Verification

Verify Two-Factor Authentication Prompt for Office 365 Login

Prev Question Next Question

Question

You have set up a conditional access policy enforcing MFA for all users in your organization for all cloud apps.

You now want to verify that users are being prompted with two-factor authentication when logging in to Office 365

Where should you look?

Answers

A. From the Azure Active Directory admin center, view the audit logs.

B. From the Azure Identity Governance blade, view Reports.

C. From the Azure Multi-Factor Authentication blade, view Fraud alert.

D. From the Azure Active Directory admin center, view the Sign-ins.

Show Answer

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

Correct Answer: D

The sign-ins report provides you with information about the usage of managed applications and user sign-in activities, which includes information about multi-factor authentication (MFA) usage.

The MFA data gives you insights into how MFA is working in your organization.

Home > Conditional Access

«>» Conditional Access | Named locations
‘Azure Active Directory
« ++ Countries location | ++ 1P ranges location Configure MFA trusted IPs
Policies

© insights and reporting Named locations are used by Azure AD security reports to reduce false positives and

% Diagnose and solve problems Location type : All types Trusted type : All types
Manage [2 search names

“> Named locations Name

@ Custom controls (Preview) No named locations found.

&% Terms of use

VEN connectivity

Click or tap Enable
application proxy.

Y Enable application proxy’ + Configure an app

© APPlication proxy provides single sign-on (SSO) and secure remote access for web applications hosted on-premises.
Learn more about Application Proxy

Option A is incorrect.

Azure AAD Audit lets you view information about changes applied to your tenant such as users and group management or updates applied to your tenant's resources.

Sign-in details are not found here.

Option B is incorrect.

This report is related to access packages.

It enables you to list all the access packages a user can request, and view the access packages that are currently assigned to the user.

Option C is incorrect.

The Multi-Factor fraud alert feature lets users report fraudulent attempts to access their resources.

It is therefore not the right answer.

To know more about Sign-in logs in Azure AAD, please refer to the link below:

The correct answer for this question is D. From the Azure Active Directory admin center, view the Sign-ins.

When you set up a conditional access policy enforcing MFA for all users in your organization for all cloud apps, you can verify that users are being prompted with two-factor authentication by checking the Sign-ins logs in the Azure Active Directory admin center. The Sign-ins logs provide detailed information about when and how users are signing in to Office 365 and other cloud apps.

To view the Sign-ins logs in the Azure Active Directory admin center, follow these steps:

Sign in to the Azure portal with an account that has the Global administrator or Security administrator role.
In the left-hand navigation menu, click on Azure Active Directory.
In the Azure Active Directory blade, click on Sign-ins under the Monitoring section.
The Sign-ins logs will display in the main pane, showing information such as the user, app, location, and authentication status for each sign-in event.
You can use the search and filter options at the top of the page to find specific sign-in events or to narrow down the results by criteria such as user, app, or location.

By reviewing the Sign-ins logs, you can confirm whether users are being prompted for MFA when logging in to Office 365 and other cloud apps. If a user is not prompted for MFA, it could indicate a problem with the conditional access policy or the user's MFA settings that need to be addressed.

Prev Question Next Question