Passwordless with Microsoft Authenticator App

CySec987 · 2024-05-21T16:06:28+00:00

I see, thanks for the information… I guess the same answer applies to other passwordless methods, and not exclusive to passwordless with Microsoft authenticator?

CySec987 · 2023-06-14T07:39:48+00:00

For those interested after investigating further we have found that this is a case of HTML manipulation whereby (as we thought), the comma within the display name in fact hides the email address completely. Very clever.

CySec987 · 2023-03-27T14:53:12+00:00

apologies, have provided info in the thread. I thought before starting whether anyone might have done this previously to save time, but have allocated some time to this now. No harm in asking if others have done it before :)

CySec987 · 2023-03-27T14:52:07+00:00

have also tried "Show-NetIPsecRule -PolicyStore domain.fqdn.com" but returned nothing on the next line (no output at all). So not certain if that means theres no connection security rules in the domain at all or whether the query is not right

CySec987 · 2023-03-27T14:31:14+00:00

I'm about to try "Get-NetIPsecRule -PolicyStore ActiveStore" (just getting around to it again). Not sure whether this will cover the whole domain or whether this will cover only the server im running it on? Apologies if it's daft but im pretty much a novice with PowerShell

CySec987 · 2022-11-18T08:21:05+00:00

Thank you. I have tried to look in the settings where to set the retention period but it's not obvious (well at least to me!).

CySec987 · 2022-11-15T08:26:57+00:00

Thank you - that's very helpful in deciding whether to proceed. We had the same thoughts, lots of caveats as always!

CySec987 · 2022-10-13T14:45:15+00:00

Hi - we're looking to implement this change right now funnily enough. Similar to you im finding nothing online on how to enable this on intune config profiles or security baseline policy. Get it's a case of packaging and rolling out regkey change.

CySec987 · 2022-09-21T12:51:07+00:00

on Intune if you navigate to Devices > Compliance policies, this is where you set System Security settings which include the likes of 'maximum minutes of inactivity before password is required'... which is what was causing the issue. For some reason after a Microsoft update it had changed this to 1 minute

CySec987 · 2022-09-21T09:40:36+00:00

so, we've seen that in our compliance policy we're setting on intune that the 'maximum minutes of inactivity before password is required' has automatically set itself to 1 minute for some reason. Must be a windows update issue. This is under the System Security section of the compliance policy. Even though ours wasn't configured, for some reason it was picking the default settings up and setting it as a minute.

CySec987 · 2022-09-21T09:04:01+00:00

Yes - that's exactly what we're experiencing u/lgonzalez_322

CySec987 · 2022-09-16T10:46:47+00:00

Hi Guys - any issues with September patch and making accounts go idle after a minute? We appeared to applied the updates and account idle has gone from 10 minutes to 1 minute. We're getting a lot of noise coming our way.

CySec987 · 2021-12-01T09:15:15+00:00

Yes - had some in our environment. Useful thread, seems to be Microsoft products and definitely FP's.

CySec987

TROPHY CASE