maester icon indicating copy to clipboard operation
maester copied to clipboard
verified publisher icon maester365

MT.1008 - Require MFA vs. Require authentication strength

Open IE-MP opened this issue 1 year ago • 3 comments

Should https://maester.dev/docs/tests/MT.1008/ be failed if a policy exists that requires authentication strength of Phish-resistant MFA for admins?

Or is the assumption both policies are needed?

IE-MP avatar Jun 03 '24 06:06 IE-MP

MT.1008 checks both Authentication Strength as well as the "legacy setting" for MFA. So it should only fail if both are missing

f-bader avatar Jun 05 '24 21:06 f-bader

Appreciate the quick reply, not sure what I'm missing. mfa2 mfa1

IE-MP avatar Jun 06 '24 10:06 IE-MP

I will repo this and let you know.

f-bader avatar Jun 06 '24 20:06 f-bader

Cannot reproduce this issue. Please let me know if this is still an issue and we will check together

f-bader avatar Oct 27 '24 17:10 f-bader