Learn how multifactor authentication helps protect your business from common identity attacks.
MFA methods with Microsoft Entra
Use various MFA methods with Microsoft Entra—such as texts, biometrics, and one-time passcodes—to meet your organization’s needs.
Previous Next
Microsoft Authenticator
Approve sign-ins from a mobile app using push notifications, biometrics, or one-time passcodes. Augment or replace passwords with two-step verification and boost the security of your accounts from your mobile device.
FIDO2 security keys
Sign in without a username or password using an external USB, near-field communication (NFC), or other external security key that supports Fast Identity Online (FIDO) standards in place of a password.
Certificate-based authentication
Enforce phishing-resistant MFA using personal identity verification (PIV) and common access card (CAC). Authenticate using X.509 certificates on smart cards or devices directly against Microsoft Entra ID for browser and application sign-in.
Passkey
Sign in with a passkey and perform phishing-resistant authentication using Microsoft Authenticator.
See what Microsoft Entra customers are saying
Get started with Microsoft Entra ID
Microsoft Entra ID P2
Get comprehensive identity and access management capabilities including identity protection, privileged identity management, and self-service access management for end users. Azure AD Premium P2 is now Microsoft Entra ID P2.
Microsoft Entra ID P1
Get the fundamentals of identity and access management, including single sign-on, multifactor authentication, passwordless and conditional access, and other features. Azure AD Premium P1 is now Microsoft Entra ID P1.
The free edition of Microsoft Entra ID is included with a subscription of a commercial online service such as Azure, Dynamics 365, Intune, Power Platform, and others.
MFA documentation and training
MFA adoption kit
Use this all-in-one guide to help you plan, test, and deploy MFA in your organization.
Passkeys explained in under four minutes
Say goodbye to password headaches and hello to a safer digital future with passkeys.
Use passwordless authentication
Make MFA more secure and convenient using new factors based on FIDO standards.
Blog: Your Pa$$word Doesn't Matter
Learn about the major password attacks and how passwords can play a role in these cyberattacks.
Use MFA to deter cyber attacks
Learn more about the effectiveness of MFA to protect your accounts from unauthorized access.
Multifactor authentication (MFA) adds a layer of protection to the sign-in process. When accessing accounts or apps, users provide additional identity verification, such as scanning a fingerprint or entering a code received by phone.
How does MFA work in Microsoft Entra?
A password
A trusted device that's not easily duplicated, such as a phone or hardware key
Biometrics such as a fingerprint or face scan
Does Microsoft Entra have MFA?
Yes, multifactor authentication is a capability of Microsoft Entra.
Protect everything
Make your future more secure. Explore your security options today.