EIDSCA.AS04 - Authentication Method - SMS - Use for sign-in.
Overviewβ
Determines if users can use this authentication method to sign in to Microsoft Entra ID. true if users can use this method for primary authentication, otherwise false.
Avoid to use SMS as primary sign in factor (instead of a password) and consider to implement a MFA or passwordless option also for your special user groups, such as front-line workers.
Test scriptβ
https://graph.microsoft.com/beta/policies/authenticationMethodsPolicy/authenticationMethodConfigurations('Sms')
.includeTargets.isUsableForSignIn -eq 'false'
Related linksβ
- Open in Graph Explorer
- phoneAuthenticationMethod resource type - Microsoft Graph v1.0 | Microsoft Learn
Test Metadataβ
| Field | Value |
|---|---|
| Test ID | EIDSCA.AS04 |
| Severity | High |
| Suite | Entra ID SCA |
| Category | General |
| PowerShell test | Test-MtEidscaAS04 |
| Tags | EIDSCA, EIDSCA.AS04 |
Sourceβ
- Pester test:
tests/EIDSCA/Test-EIDSCA.Generated.Tests.ps1 - PowerShell source:
powershell/internal/eidsca/Test-MtEidscaAS04.ps1