混合天蓝色AD加入域的多因素身份验证 [英] Multi-factor authentication for hybrid azure AD joined domain

问题描述

我的问题是，是否可以在混合Azure AD加入的域配置上强制进行多因素身份验证?用例:例如，我的一名员工在机场的酒吧，他将通过未注册的用户连接到Azure AD域 设备，他使用的是Azure AD可信凭据进行连接.在这种情况下，我想强制进行多因素身份验证.

My question is if It is possible to force the multi-factor authentication on Hybrid Azure AD joined domain configuration? Use case: for example, one of my employees is on the airport's bar and he is going to connect to azure AD domain by a not registred device, he use is azure AD trusted credentials to connect. In this case I want to force the multi-factor authentication.

谢谢.亲切的问候维托里奥

Thank you. Kind Regards Vittorio

推荐答案

我认为 您要搜索的是Azure AD条件访问.

I think Azure AD Conditional Access is what you are searching for.

您可以在许多情况下(例如设备信任度，位置等)强制MFA.有条件访问需要AAD P1许可证.

You can force MFA on many conditions (like device trust, location, etc.) with that. Conditional Access requires a AAD P1 license.

/彼得

这篇关于混合天蓝色AD加入域的多因素身份验证的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！