T67

Triple Six Seven

EMS | Intune | ConfigMgr

  • Home
  • Windows 365
  • Intune
  • ConfigMgr
  • AADP
AADP 

Enable Password-less Sign in Azure AD

October 5, 2018January 26, 2019 Jake Stoker Authenticator, Azure AD, Password-less Sign in, Sign in Optons

You now have the ability to sign into your Azure AD account without using a password. With the Authenticator app you can approve the sign in by selecting the correct number which is displayed on the login screen. To set this up you need to enable this at the tenant level first. To do this follow the steps below:

The first step is to install the Azure AD Preview module using powershell

Install-Module -Name AzureADPreview

Connect to azure ad with your security administrator or global administrator credentials

connect-azuread

Now enable passwordless sign in for your tenant

New-AzureADPolicy -Type AuthenticatorAppSignInPolicy -Definition ‘{“AuthenticatorAppSignInPolicy”:{“Enabled”:true}}’ -isOrganizationDefault $true -DisplayName AuthenticatorAppSignIn

Now you have successfully enabled this at the tenant level the end users need to ensure the following is in place to start taking advantage of passwordless sign in.

  • User must be registered for MFA 
  • User must have the latest version of Authenticator installed on their mobile device

Now the user can enable phone sign in for their work or school account in the Authenticator app which will allow them to start signing into their azure ad account without a password. To enable phone sign in use the following link https://docs.microsoft.com/en-us/azure/active-directory/user-help/microsoft-authenticator-app-phone-signin-faq

End User Experience

Azure Login Screen
iOS Authenticator App 


  • ← Delay iOS Updates Intune
  • Co-Management Device Configuration Workload →

Follow Me

  • Twitter
  • LinkedIn

Recent Posts

  • Provision a Cloud PC in 5 minutes
  • Customise MyApps using Workspaces in Azure AD
  • Azure AD B2B– Google Federation
  • Identity Governance – Self Service Access Package for External Users
  • Syncing Device Collections to Azure AD

Tags

1710 1802 1803 1806 AAD AADP App Configuration Policy App Protection Policy Automation AutoPilot Azure Active Directory Azure AD CA Co-Management Compliance Compliance Policies Conditional Access ConfigMgr Configuration Manager Corporate Data Corporate Device CSP Current Branch Custom Profile Enrollment Enrollment Restrictions Exchange Online Hybrid AD Join Intune Intune Update Rings iOS MAM Managed Apps MFA Microsoft Teams Office 365 Outlook Powershell Release SCCM Semi-Annual Channel Updates & Servicing Windows 10 Windows 10 Updates wufb

The information on this blog is provided ‘AS IS’ with no warranties and confers no rights. This blog does not represent the views of my employer. All content on this site is solely my own personal views.

Copyright © 2023 Triple Six Seven. All rights reserved.
Theme: ColorMag by ThemeGrill. Powered by WordPress.