Use this script to get the status report of all user’s under your Office 365 tenants who have enabled Multifactor authentication (MFA).
Syntax
Connect-MsolService
write-Host “Finding Azure Active Directory Accounts…”
$Users = Get-MsolUser -All | ? { $_.UserType -ne “Guest” }
$Report = [System.Collections.Generic.List[Object]]::new() # Create output file
Write-Host “Processing” $Users.Count “accounts…”
ForEach ($User in $Users) {
$MFAMethods = $User.StrongAuthenticationMethods.MethodType
$MFAEnforced = $User.StrongAuthenticationRequirements.State
$MFAPhone = $User.StrongAuthenticationUserDetails.PhoneNumber
The script will export a csv file of MFA Users in the following path: c:\windows\temp\MFAUsers.CSV path.
It will display the details as below:
User
Name
MFAUsed
MFAMethod
PhoneNumber
| Purpose: | Get the Multifactor authentication status report for each user in office 365 tenant |
| Modification: | - |
| Type: | PowerShell (.ps1) |
| Compatibility: | Run with PowerShell |
| Tags: | - |
| Reference link: | https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-userstates |