Sometime when you or any user in tenant try to login into https://portal.azure.com, it keeps looping you without any access success and fail to log into the microsoft azure account.
Since managing security can be difficult, Microsoft is making security defaults available to everyone.
In today’s environment, identity-related attacks such as password spraying, replay, and phishing are common.
Using multi-factor authentication (MFA) and blocking legacy authentication prevents more than 99.9% of these identity-related attacks.
The goal is for all organisations to have at least a basic level of security enabled at no additional cost.
With preconfigured security settings, security defaults make it easier to help protect your organisation from these identity-related attacks.
Security defaults by Microsoft were created from the start to help protect your company’s user accounts. Security defaults, when enabled, provide secure default settings that help keep your company safe by:
- All users and administrators must register for MFA using the Microsoft Authenticator app.
Using MFA to challenge users, mostly when they appear on a new device or app, but more frequently for critical roles and tasks. - Disabling authentication from legacy authentication clients that are incapable of supporting MFA.
- Admins are protected by requiring additional authentication each time they log in.
As per Microsoft, MFA is an important first step in securing your business, and security defaults make enabling MFA simple.
If you created your subscription on or after October 22, 2019, security defaults may have been automatically enabled for you; check your settings to confirm.
To fix the error Microsoft has enabled security defaults to keep your account secure office 365, either you have to disable the security default option into your azure directory settings by selecting the ‘Enable security defaults’ option as ‘No’ or enable the MFA (Multi-factor authentication) setting for all users.
Once you disable the ‘Enable security defaults’ option, you need to wait for sometime as it takes couple of seconds to save and reflect the settings.
Now you should be able to access the azure account without warning Microsoft has enabled security defaults to keep your account secure office 365.
How to Enable security defaults to keep your account secure office 365?
Steps to enable Security Defaults in your azure directory:
- Log in as a security administrator, Conditional Access administrator, or global administrator to the Azure portal.
- Select Azure Active Directory –> ‘Properties’.
- Select ‘Manage security defaults’ Option.
- Toggle the ‘Enable security defaults’ switch to ‘Yes’.
- End up choosing ‘Save’.
Warning: Do not disable methods for your organization if you are using security defaults. Disabling methods may lead to locking yourself out of your tenant. Leave all Methods available to users enabled in the MFA service settings portal.
How to Disable security defaults to keep your account secure office 365?
Steps to disable Security Defaults in your azure directory:
- Log in as a security administrator, Conditional Access administrator, or global administrator to the Azure portal.
- Select Azure Active Directory –> ‘Properties’.
- Select ‘Manage security defaults’ Option.
- Toggle the ‘Enable security defaults’ switch to ‘No’.
- End up choosing ‘Save’.