Microsoft Authenticator: Display App Name During Sign-In Attempts [CHK-1142]
This check verifies if Microsoft Authenticator displays the app name during a sign-in attempt.
Rationale
Displaying the app name during sign-in attempts helps employees recognize and reject fraudulent attempts. This feature, combined with the location display, provides comprehensive context for the sign-in attempt.
Fix
An automated fix is available through Attic. To fix it yourself, follow these steps:
- Navigate to Entra ID portal at https://entra.microsoft.com
- Go to Authentication methods
- Click on "Policies"
- Click on "Microsoft Authenticator"
- Under "Configure", expand "Show application name in push and passwordless notifications"
- Set this option to "Enabled"
- Click "Save"
Impact
Enabling this feature enhances the security of sign-in attempts by providing additional context to the user, helping prevent unauthorized access.