- #EXCHANGE ACCOUNT ON MAC WITH TWO FACTOR AUTHENTICATION INSTALL#
- #EXCHANGE ACCOUNT ON MAC WITH TWO FACTOR AUTHENTICATION FREE#
There’s a choice to use authenticator apps, or a phone number. When you enable MFA for an Office 365 user, when the user logs on to the portal or to OWA they are prompted to set up their second factor of authentication. Depending on your identity model and requirements there’s other options as well, but for this article I’m going to just demonstrate with the Office 365 MFA features.
#EXCHANGE ACCOUNT ON MAC WITH TWO FACTOR AUTHENTICATION FREE#
Just in case you missed that, Duo’s own documentation does say that OWA/ECP is protected by their 2FA product, but EWS is not.įor Exchange Online, 2FA can be implemented using the free capability included in all Office 365 plans. do you enable 2FA for Exchange remote access, but not for internal Active Directory authentication). Duo protects OWA and ECP, but not ActiveSync, EWS, or Outlook Anywhere), and how you choose to implement it (e.g. When you use a third party product your 2FA protection is limited to the capabilities of the product itself (e.g.
#EXCHANGE ACCOUNT ON MAC WITH TWO FACTOR AUTHENTICATION INSTALL#
Some products, like Duo (which is mentioned in the report linked at the beginning of this article), install directly on the Exchange server, while others are integrated as a reverse proxy that sits in front of Exchange (and any other remote access method that the organization might want to protect, such as Citrix). For Exchange Server on-premises, 2FA is not a native capability but can be implemented using third party products.