question

roeizamir-7597 avatar image
0 Votes"
roeizamir-7597 asked ·

Create Report of azure mfa users that have been enroll

hi

i have send my users the aka.ms/mfasetup url for enroll the MFA

is there a report that i can see if user was enrolled and i can add him to Conditional access ?

azure-ad-multi-factor-authentication
· 1
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Powershell code below creates a csv with all users and if they are enrolled with the authentication method used

Install-Module MSOnline

Connect-MsolService

Get-MsolUser -All | Select-Object @{N='UserPrincipalName';E={$_.UserPrincipalName}},

@{N='MFA Status';E={if ($.StrongAuthenticationRequirements.State){$.StrongAuthenticationRequirements.State} else {"Disabled"}}},

@{N='MFA Methods';E={$_.StrongAuthenticationMethods.methodtype}} | Export-Csv -Path c:\MFA_Report.csv -NoTypeInformation

0 Votes 0 ·
michev avatar image
0 Votes"
michev answered ·
·
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

amanpreetsingh-msft avatar image
0 Votes"
amanpreetsingh-msft answered ·

@roeizamir-7597

You can use below PowerShell cmdlets to get list of users with MFA Enabled:

  1. Install-Module MSOnline If the module is not installed already.

  2. Connect-MsolService Login with Global Admin account.

  3. Get-MsolUser -All | select DisplayName,BlockCredential,UserPrincipalName,@{N="MFA Status"; E={ if( $_.StrongAuthenticationRequirements.State -ne $null){ $_.StrongAuthenticationRequirements.State} else { "Disabled"}}} To get a list of users with MFA Enabled


Please "Accept as answer" wherever the information provided helps you to help others in the community.

·
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

PatrickMast avatar image
6 Votes"
PatrickMast answered ·

Just check out this built-in Azure report, although it doesn't always seem to be up-to-date:
https://portal.azure.com/#blade/Microsoft_AAD_IAM/AuthMethodsOverviewBlade

·
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.