M365 Changelog: Follow up to MC666629 – Suppressing Authenticator Notifications from Risky Sources

MC675138 – This is a follow up to MC666629 (August ’23) which was incorrectly removed from the Message center. Microsoft apologizes for any inconvenience.

The proposed approach seeks to streamline the authentication process by suppressing authenticator notifications for requests originating from unfamiliar locations. By intelligently identifying risky sources like unknown IP addresses, the system can effectively differentiate potential malicious attempts from legitimate ones. This suppression of notifications will apply to both Phone-Sign in and Multi-Factor Authentication (MFA) notifications.

It’s essential to note that while authentications from unfamiliar locations won’t trigger notifications, the system will not block these requests. Users can still retrieve genuine requests at any time by accessing the Authenticator app.

When this will happen:

Targeted Release: This is currently rolling out and expected to complete by late September 2023.

How this will affect your organization:

The implementation of this approach will be silently rolled out to users, and it will only take action when an Authenticator request originates from an unfamiliar location. In other words, users will not be explicitly notified about this change, but the system will intervene when it detects a login attempt from an unrecognized or unfamiliar source.

What you need to do to prepare:

This does not require any action from the users.

Join Petri Insider

Whether it’s Security or Cloud Computing, we have the know-how for you. Sign up for our newsletters here.

Join the conversation