CP
cyberpings
Tools & TutorialsMEDIUM

Microsoft Entra ID - New External MFA Option Available

HNHelp Net Security
MicrosoftEntra IDMFAOpenID ConnectConditional Access
🎯

Basically, Microsoft now lets users add third-party security checks for logging in.

Quick Summary

Microsoft has rolled out external MFA for Entra ID, allowing third-party authentication solutions. This flexibility helps organizations meet compliance needs and enhances security. It's a significant step towards better identity management in the digital landscape.

What Happened

Microsoft has introduced a new feature in Entra ID that allows organizations to integrate external Multi-Factor Authentication (MFA) solutions. This option is now generally available, enabling users to employ third-party identity providers for enhanced security. By supporting external MFA, Microsoft aims to help organizations meet regulatory requirements and ensure a consistent approach to authentication.

This development is crucial for businesses undergoing mergers and acquisitions or those that require a tailored MFA solution. The integration is built on the OpenID Connect (OIDC) standard, allowing organizations to maintain their existing security policies while adding new authentication methods.

Who's Affected

Organizations using Microsoft Entra ID are the primary beneficiaries of this new external MFA capability. This feature is particularly relevant for businesses that have specific compliance needs or those that want to streamline their authentication processes. Administrators will find it easier to manage user access by incorporating third-party MFA solutions alongside Microsoft's built-in options.

Additionally, the external MFA feature can be assigned to specific user groups, allowing for a more customized security approach. This flexibility is essential for organizations looking to enhance their security posture without sacrificing user experience.

What Data Was Exposed

While the introduction of external MFA does not expose any data per se, it does require organizations to grant administrative consent for the external provider to access user information during the authentication process. This means that sensitive user data may be shared with third-party providers, making it essential for organizations to choose reputable MFA solutions that prioritize data protection.

Microsoft emphasizes that the integration of external MFA with Conditional Access policies is designed to align authentication prompts with organizational security goals. However, it also cautions against excessive reauthentication, which can lead to user fatigue and increased phishing risks.

What You Should Do

Organizations should begin planning to configure external MFA in their Microsoft Entra ID settings. This involves selecting a third-party MFA provider and ensuring that it meets their security and regulatory requirements. Microsoft will provide migration guidance as it phases out the previous Custom Controls feature by September 30, 2026.

To ensure a smooth transition, organizations should review their existing authentication policies and adjust them according to Microsoft's recommendations for reauthentication frequency. This proactive approach will help strike the right balance between security and user productivity, ultimately enhancing the overall security framework of the organization.

🔒 Pro insight: The integration of external MFA reflects a growing trend in identity management, emphasizing flexibility and compliance in security frameworks.

Original article from

Help Net Security · Anamarija Pogorelec

Read Full Article

Share

Related Pings

LOWTools & Tutorials

Reach Security - Awarded Best Continuous Threat Exposure Solution

Reach Security has been awarded for its AI-driven platform that enhances threat exposure management. This recognition highlights the importance of continuous assessment in cybersecurity. Organizations can now better identify and remediate vulnerabilities with automated solutions.

SC Media·
MEDIUMTools & Tutorials

Nucleus Security - Awarded Best Vulnerability Management Solution

Nucleus Security has been awarded the Best Vulnerability Management Solution in the 2026 SC Awards. This recognition highlights its innovative AI-driven platform that helps organizations manage vulnerabilities effectively. With impressive customer success stories, Nucleus is making waves in the cybersecurity landscape.

SC Media·
LOWTools & Tutorials

Securonix UEBA - Awarded Best Insider Threat Solution

Securonix UEBA has been recognized as the Best Insider Threat Solution at the 2026 SC Awards. This platform uses advanced analytics to detect insider threats effectively. Its capabilities are crucial for organizations across various industries to safeguard against unauthorized access and data breaches.

SC Media·
MEDIUMTools & Tutorials

Kali Linux 2026.1 - New Tools and BackTrack Mode Released

Kali Linux 2026.1 has been released with 8 new tools and a refreshed theme. This update enhances ethical hacking capabilities and introduces a nostalgic BackTrack mode. Users can easily upgrade or download the latest version.

BleepingComputer·
MEDIUMTools & Tutorials

Tools - New Dimensional Analysis Plugin for Claude Released

A new plugin for Claude enhances code auditing through dimensional analysis. It achieves impressive results, helping developers identify code mismatches effectively. This innovative tool is a game-changer for arithmetic-heavy projects.

Trail of Bits Blog·
MEDIUMTools & Tutorials

Tools - Spur Intelligence Enhances IP Intelligence Platform

Spur Intelligence has enhanced its IP intelligence platform. New features improve visibility into anonymized infrastructure, helping security teams make informed decisions. This is crucial as fraudsters increasingly use these technologies to obscure their activities.

Help Net Security·