Microsoft has introduced recently a new set of security settigs to provide a more secure identity protection by default. From now on, when you create a new Dynamics 365 or Power Platform trial, you will get these new settigs enabled automatically.
These are some of the new changes that have been introduced:
- Requiring all users and admins to register for Multi-factor Authentication (MFA).
- Challenging users with MFA – mostly when they show up on a new device or app, but more often for critical roles and tasks.
- Disabling authentication from legacy authentication clients, which can’t do MFA.
None of this replaces the rich and advance security capabilities in Azure Active Directory, like Azure AD Conditional Access. Security defaults just intends to provide business customers with some basic protection mechanism to start with. Have a look at this article for more information.
When can you check if Security defaults are enabled in your organisation? Go to the Azure portal => Active Directory => Properties: