Multifactor Authentication

Requiring two or more verification factors to sign in, such as a password plus a phone prompt.

Multifactor Authentication (MFA) requires at least two independent verification factors before granting access — typically something you know (password), something you have (an authenticator app or hardware token), or something you are (biometric). In Azure, MFA is managed through Microsoft Entra ID, the renamed Azure AD, and can be enforced broadly or through Conditional Access policies that trigger step-up authentication only when risk signals appear. For the exam, remember that Conditional Access decides when MFA is required while MFA is the challenge mechanism itself. Enabling MFA is one of the highest-impact controls against credential-based attacks.

PlayPrepHQ study notes are written and reviewed against primary exam sources. How we create & review content →

Related terms

Back to Azure Management and Governance