Authentication Method - Microsoft Authenticator - State

Why This Matters

The Microsoft Authenticator app is a critical component of phishing-resistant multi-factor authentication (MFA). If the Authenticator app is not enabled in your authentication methods policy, your organization may rely on weaker verification methods such as SMS or voice calls, which are more susceptible to SIM swapping and social engineering attacks. Enabling Microsoft Authenticator helps secure user sign-ins and reduces the risk of account compromise.

What Aether365 Checks

Aether365 verifies that the state setting for the Microsoft Authenticator authentication method configuration is set to enabled. This check appears in the Aether365 dashboard under the entra-id section.

Microsoft references

• Concept authentication methods manage
• Microsoftauthenticatorauthenticationmethodconfiguration
• [Graph explorer](https://developer.microsoft.com/en-us/graph/graph-explorer?request=policies/authenticationMethodsPolicy/authenticationMethodConfigurations()