Help Center- You need to be the Tenant Admin to set up MFA for your Office 365 tenant.
- Open the Admin Center and go to Users > Active Users
- Open Multi-factor authentication
- Don’t select any user yet, just open the multi-factor authentication screen. You will find the button in the toolbar.
- Open the Service settings
- Before we start enabling MFA for the users, we first go through the service settings. The button to the settings screen doesn’t stand out, but it’s just below the title.
- Setup MFA Office 365
- A few settings are important here: Make sure you check “Allow Users to create app passwords to sign into non-browser apps”. This is needed for apps that don’t support multi-factor authentication.
- Cell to phone and text message to phone enable them. Then click save.
- Enable MFA for Office 365 users
- After you have set the settings to your liking click on save and then on users (just below the title multi-factor authentication). You see the list of your users again. Here you can select single or multiple users to enable MFA. At the moment you enable Office 365 MFA for a user it can get the setup screen as soon as the users browse to one of the Office 365 products.
- Next, in the Admin Center. Go to Settings>Org Settings>Modern Authentication. Click on Modern Authentication.
- In the Modern Authentication screen. Make sure all boxes are checked to ensure that permissions to use 3rd party applications are allowed to send email. Then click Save.
- Once that is complete, make sure that Authenticated SMTP is enabled for all users in the tenant. To do this, in the Admin Center. Go Users>Active Users.
- One user at a time, click on the user display name. When the pop-out window appears. Click on Mail>Email Apps.
- When the manage email apps screen appears. Make sure the Authenticated SMTP box is checked. Then click Save Changes. This will ensure that users are able to Authenticate over SMTP.
