Rule description
This rule queries Office 365/Azure Global Admins and for each user returned, set the user's MFA status (Enabled, Disabled) according to the setting specified on the rule.
When to use this rule
Use this rule when you need to enforce bulk Multi-Factor Authentication for Microsoft 365 Global Admins.
Rule Settings
Query Section
| Setting name | Description |
|---|---|
|
Properties to Display |
To display additional properties for each object found by the query, add those properties to the list. |
|
Sort by |
Sort result objects list. |
|
Maximum returned results |
Specify integer value. By default, all objects that you have in Microsoft 365 are returned. Tip: It is possible to change the default value in Microsoft 365 extension settings.
|
|
Filter |
To hide unwanted data returned by the query, select the filtering conditions. Example: Find all users with E1 plan assigned {$_.Licenses.AccountSkuId -match "STANDARDPACK"}
You can find out the license plan ID in the cache file on the machine where the Cayosoft service is installed: C:\ProgramData\Cayo Software\AdminAssistant\ItemCache\O365LicenseDefCache.xml This XML file contains friendly names of plans and their IDs.
|
Action Section
| Setting name | Description |
|---|---|
|
Multi-factor Auth Status |
Specify Multi-factor Authentication status:
|
Output Section
This section defines the output format of this rule.
To get more information about this section, please see the Output section article.
Enforce/Schedule section
This section defines the schedule for how often to run the rule.
To get more information about this section, please see the Enforce/Schedule section article.
Change History
| Version | Notes |
|---|---|
| 8.2.0 |
|
Comments
0 comments
Please sign in to leave a comment.