AzureTracks

Why Multi-Factor Authentication is Non-Negotiable for Azure Security

You will never out-patch, out-educate, or out-monitor credential theft — but you can neutralize it. Multi-Factor Authentication (MFA) is the single most effective control available to stop account compromise, making it a foundational pillar of Zero Trust and modern cloud security. When MFA is enforced consistently, stolen passwords become largely useless, dramatically reducing the risk of ransomware, data breaches, and cloud takeovers.

This article explains why MFA is non-negotiable for Microsoft Entra ID (formerly Azure Active Directory), how attackers exploit password-only authentication, and how Conditional Access transforms MFA from an optional safeguard into an always-on security control. You will also learn how to deploy MFA safely across all users and applications, avoid common misconfigurations, and align MFA enforcement with compliance and identity protection strategies.

Posted on February 19, 2026 6:14 am

Azure

How to Find Users With & With-Out MFA Quickly

Wondering where to get started finding all the users in your Entra ID that do not have MFA enabled? Here’s some quick PowerShell to get you started and easily identify what users may be missed by your conditional access policies.

Posted on August 21, 2024 9:24 am

Azure

Strengthening Cybersecurity: Protecting Against 99% of Attacks

In the ever-evolving landscape of cybersecurity, one undeniable truth stands out—implementing fundamental security hygiene practices can thwart the vast majority of cyberattacks. By adhering to these minimum-security standards, it is possible to protect against over 99 percent of attacks. In this article, we’ll delve into these essential practices and explore how they can fortify your defenses.

Continuing the theme of exploring highlights from the Microsoft Digital Defense Report #MDDR 2023, today we walk through the top 5 security fundamentals to better enhance all organizations digital defenses.

Posted on November 23, 2023 2:20 pm

Azure

Modernize your Microsoft Authenticator Policies

Getting ready to move into Azure Active Directory or make changes to your Microsoft Entra configurations? The last few weeks I’ve talked about MFA and conditional access rules; so this week we will look at the preview for Microsoft Authenticator Policies, then change gears and talk about how to get our users excited about these security enhancements.

Posted on December 6, 2022 7:15 am

Azure

Ready to modernize your MFA?

Just using MFA in it’s basic form is not enough. Today, we take a trip through modern authentication methods, modernizing, and becoming more phish-resistant. I talk top 3 challenges and how to tackle them together!

Posted on November 22, 2022 7:10 am

Azure

Microsoft Cloud Identity – MFA in Microsoft Cloud

Today Microsoft Cloud Quick Fix chats with Andrew Lowes from AzureTracks about Multi-factor Authentication in the Microsoft Cloud and recent finding that 78% of Microsoft 365 administrators do not have multi-factor authentication (MFA) activated!

Posted on October 30, 2020 8:16 am

Azure

Azure Active Directory Branding

This is not a complex configuration by any stretch as Microsoft has made this really straight-forward to setup for us; but it is an important step to help establish your brand at login. This is quite important to communicate to your users logging into your resources and applications via Azure AD. It can help prevent credential loss — especially if combined with Multi-Factor Authentication.

Posted on September 21, 2020 3:49 pm

Tag: mfa