Authentication Method - Microsoft Authenticator - Included users/groups to show geographic location in push and passwordless notifications

Why This Matters

Displaying geographic location in Microsoft Authenticator push and passwordless notifications adds an important layer of security by helping users verify the legitimacy of authentication requests. If an attacker initiates a sign-in from an unexpected location, the user can immediately see this discrepancy and deny the request, reducing the risk of successful phishing or MFA fatigue attacks.

What Aether365 Checks

Aether365 verifies that the Microsoft Authenticator authentication method policy is configured to show geographic location information to all users (the "all_users" target group). This check appears in the Aether365 dashboard under Entra ID security checks.

How to Fix

To ensure geographic location is displayed in Microsoft Authenticator notifications for all users:

Microsoft references

• Microsoftauthenticatorauthenticationmethodconfiguration
• [Graph explorer](https://developer.microsoft.com/en-us/graph/graph-explorer?request=policies/authenticationMethodsPolicy/authenticationMethodConfigurations()