maester
maester copied to clipboard
New Test: SMS-based authentication should be disabled
SMS Sign in is a primary sign in factor using SMS (instead of the password which is the default), it is meant for specific front-line worker scenarios that's don't require strong authentication with MFA.
Recommendation: Should be disabled.
https://learn.microsoft.com/en-us/entra/identity/authentication/howto-authentication-sms-signin
https://x.com/janbakker_/status/1790996204890829104