enforce_alternative_mfa
Enforce an alternative multi-factor authentication (MFA) method when phishing-resistant MFA is not implemented, ensuring compliance with BOD 25-01 requirements for Microsoft 365 cloud services.
Instructions
Enforce alternative MFA method if phishing-resistant MFA not enforced (MS.AAD.3.2v1)
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
No arguments | |||
Input Schema (JSON Schema)
You must be authenticated.
Other Tools from BOD-25-01-CSA-Microsoft-Policy-MCP
- block_high_risk_signins
- block_high_risk_users
- block_legacy_auth
- complete_auth_methods_migration
- configure_admin_alerts
- configure_admin_consent
- configure_authenticator_context
- configure_global_admin_approval
- configure_global_admins
- configure_role_alerts
- disable_password_expiry
- enforce_alternative_mfa
- enforce_cloud_accounts
- enforce_granular_roles
- enforce_pam
- enforce_phishing_resistant_mfa
- enforce_privileged_mfa
- get_policy_status
- restrict_app_consent
- restrict_app_registration
- restrict_group_consent
Related Tools
- @DynamicEndpoints/Automated-BOD-25-01-CISA-Microsoft-Policies-MCP
- @DynamicEndpoints/Automated-BOD-25-01-CISA-Microsoft-Policies-MCP
- @DynamicEndpoints/Automated-BOD-25-01-CISA-Microsoft-Policies-MCP
- @DynamicEndpoints/Automated-BOD-25-01-CISA-Microsoft-Policies-MCP
- @DynamicEndpoints/Automated-BOD-25-01-CISA-Microsoft-Policies-MCP
- @appwrite/mcp