hackforla
Put azure MFA into 1password
Overview
Azure is logged into via a shared account. We need to get on a call and transfer the MFA from phone (John's phone) to 1password so we can all use it
@ale210 I thought we tried to do this before, but it wouldn't allow anything but a phone number. Did you ask John?
Took a quick look at this. It looks like the only other sign in methods available to us at the moment (other than phone) for the Azure account are the Microsoft Authenticator app or a hardware key:
After a lot of parsing Microsoft Q&A boards and docs, it looks like this might be configurable via the Microsoft Entra ID to allow 3rd party authenticators/time based one time passwords, but I think that would be in the city's control.
https://learn.microsoft.com/en-us/entra/identity/authentication/concept-authentication-methods-manage
We may also be looking at a legacy version of the registration/security settings? I didn't quite follow this article, but it lists 3rd party authenticators as available by default in the new "combined registration." It looks like you can migrate from legacy mfa/security settings to this new one, but again, that would be up to whoever has control of the Entra ID.
https://learn.microsoft.com/en-us/entra/identity/authentication/concept-registration-mfa-sspr-combined
