question

JanSpeksnijder-6035 avatar image
JanSpeksnijder-6035 asked ·

Serious security issue with Sharepoint when setting access for work or school in Windows 10

We have a Office 365 E1 license. Our users use unmanaged/untrusted Windows 10 personal devices. We configured MFA for authentication and 30 minutes session timeout. In Windows Settings Access work or school, a user can enrol his device. The user is asked to do that after he choose to open a document with desktop App (Word). Afterwards when these users type in the url companyname.sharepoint.com he no longer is asked to authenticate with MFA and session timeout does not work. When the setting in Windows 10 is removed he again is asked to signin with MFA and session timeout works.

What is wrong in our server setting that this serious security problem arise?
Please help.

azure-active-directory
10 |1000 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

LeonLaude avatar image
LeonLaude answered ·

Hi,

Q&A currently supports the products listed over here https://docs.microsoft.com/en-us/answers/products (more to be added later on).

You can reach the experts in the dedicated SharePoint forum over here:
https://social.technet.microsoft.com/Forums/en-US/home?category=sharepoint

If you're using SharePoint Online:
https://social.technet.microsoft.com/Forums/en-US/home?forum=onlineservicessharepoint

(Please don't forget to accept helpful replies as answer)

Best regards,
Leon


Share
10 |1000 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.