CompTIA Project+ Study Guide uCertify MS-100 Microsoft 365 Identity and Services
Lesson 8 Manage Authentication and Implement Multi-Factor Authentication 2 MS-100
Manage Authentication and Implement Multi-Factor Authentication 3 MS-100This presentation covers the following exam objectives: Manage authentication » Design authentication method » Configure authentication » Implement authentication method » Manage authentication » Monitor authentication Implement Multi-Factor Authentication (MFA) » Design an MFA solution » Configure MFA for apps or users » Administer MFA users » Report MFA utilization
Manage Authentication and Implement Multi-Factor Authentication 4 MS-100 8.1 Design Authentication Method 8.2 Configure Authentication 8.3 Implement Authentication Method 8.4 Manage Authentication 8.5 Monitor Authentication 8.6 Design an MFA Solution 8.7 Configure MFA for Apps or Users 8.8 Administer MFA Users 8.9 Report MFA Utilization 8.10 Summary
8.1 Design Authentication Method 5 MS-100When designing an authentication method for Microsoft 365, you need to make several decisions around basic and modern authentication. The difference between the two is as follows: • It is also referred to as proxy authentication. When a client performs basic authentication, it transmits base64 encoded credentials from the client to the server. These credentials are protected from interception within a Transport Layer Security (TLS) encrypted session. Basic authentication • It supports technologies such as multi-factor authentication, smart card authentication, certificate- based authentication, and SAML-based third-party identity providers instead of just username-and password-based authentication. Modern authentication
8.1 Design Authentication Method (continued) 6 MS-100It is important to decide the authentication methods that will be supported if you want to support self-service password reset (SSPR) or Azure multi-factor authentication (MFA). Here are the authentication methods and where they can be used: Authentication MethodUsage PasswordMFA and SSPR Security questionsSSPR Only Email addressSSPR Only Microsoft Authenticator app MFA and SSPR OATH Hardware token Public preview for MFA and SSPR SMSMFA and SSPR Voice CallMFA and SSPR App passwordsMFA only in certain cases
8.2 Configure Authentication 7 MS-100PowerShell command to verify that modern authentication is enabled: Get-OrganizationConfig | Format-Table Name,OAuth* -Auto PowerShell command to disable modern authentication: Set-OrganizationConfig -OAuth2ClientProfileEnabled $false PowerShell command to disable modern authentication: Set-OrganizationConfig -OAuth2ClientProfileEnabled $true
8.2 Configure Authentication (continued) 8 MS-100» Here are the steps to set user passwords to expire after a specific amount of time: 1.In the admin center, go to the Settings page.
Want to read all 35 pages?
Previewing 9 of 35 pages Upload your study docs or become a member.
Want to read all 35 pages?
Previewing 9 of 35 pages Upload your study docs or become a member.
End of preview
Want to read all 35 pages? Upload your study docs or become a member.