There are over 300 million fraudulent attempts to sign in to our cloud services every day. All it takes is one compromised credential or one legacy application to cause a data breach. One of the best things you can do to prevent these attacks is to turn on multifactor authentication, which can block over 99.9 percent of account compromise attacks.
Enable security defaults to adopt security best practices, such as requiring multifactor authentication and disabling insecure protocols. Security defaults will ensure that your security settings stay up-to-date until you decide to manage them yourself. There is no additional cost.
Starting the week of March 22, 2023, Microsoft will make it easier for you to enable security defaults by presenting you with a message when you sign in to your Azure Active Directory (Azure AD) account through your web browser. If you don’t take action per the message, security defaults will be enabled after 14 days. If you’d like to get started, you can enable security defaults today.
When you enable security defaults:
You as a Global Administrator will be asked to register for multifactor authentication using the Microsoft Authenticator app and your phone number.
Everyone else in your organisation will be asked to register with the Microsoft Authenticator app for multifactor authentication.
If you have other questions, read our documentation. If you need more support, create a support request in the Azure portal.