Customize Azure Multi-factor Authentication – Part 1

Ahmad Yasin (MCSA office 365, MCSE : Messaging, Azure Certified)

Hello All,

In First part of Azure MFA series, we discussed the general concept of Azure MFA and how you can integrate it with your systems based on your requirements.

In the second and Third part, we implemented a real MFA scenario to secure the remote desktop access to servers (RDP).

In this part we will discuss how to customize Azure MFA sound.

so let’s start this part to show you how to customize the calls voice; custom voice messages allow you to use your own recordings or greetings with multi-factor authentication. These can be used in addition to or to replace the Microsoft records.

First of All, you should have created an Azure MFA provider as we did in previous part, login to your azure tenant and open MFA provider by navigate to:

If you have an office 365 subscription only, you can enable MFA for users without the need for Azure MFA provider, but in this case you cannot do any MFA customization, so to use MFA customization you should have Azure MFA Provider.

Active Directory -> MULTI-FACTOR AUTH PROVIDER -> Click in your provider

1

after you open MFA provider, click in Manage:

2

The main page of MFA provider will appear as below:

3

From configure options in the left pane, click on setting, the setting page will appear as below, to add your custom voice, click in New Voice Message:

4

Since this is the first time, you need to upload your custom voice first, click in Manage Sound Files as below:

5

The sound page will appear, click in Upload Sound Files as below:

6

Click in Choose File to select your custom voice then fill any description for the file and click Upload as below:

7

The Size of custom voice should not exceed 5 MB and must have WAV or MP3 format, Also it’s recommended the length of voice to be less than 20 seconds.

As appear below, the file uploaded successfully, now click in back button as below:

8

Now, choose the language of your custom voice, Message Type and the sound file which we just upload and click create as appear below:

9

Finally, below is the list of message types and it’s meaning:

Greeting (Standard) : Thank you for using the Microsoft’s sign-in verification system. Please press the pound key to finish your verification.

Retry (Standard): Thank you for using the Microsoft’s sign-in verification system. Please press the pound key to finish your verification.

Fraud Greeting (Standard): Thank you for using Microsoft’s sign-in verification system. Please press the pound key to finish your verification. If you did not initiate this verification, someone may be trying to access your account.  Please press zero pound to submit a fraud alert.  This will notify your company’s IT team and block further verification attempts.

Greeting (PIN) : Thank you for using Microsoft’s sign-in verification system.  Please enter your PIN followed by the pound key to finish your verification.

Retry (PIN): Thank you for using Microsoft’s sign-in verification system.  Please enter your PIN followed by the pound key to finish your verification.

Fraud Greeting (PIN): Thank you for using Microsoft’s sign-in verification system.  Please enter your PIN followed by the pound key to finish your verification. If you did not initiate this verification, someone may be trying to access your account.  Please press zero pound to submit a fraud alert.  This will notify your company’s IT team and block further verification attempts.

Authentication Successful: Your sign in was successfully verified. Goodbye.

Authentication Denied: I’m sorry, we cannot sign you in at this time. Please try again later.

Verification Denied Retry: Verification denied.

Activation Greeting (Standard): Thank you for using the Microsoft’s sign-in verification system.  Please press the pound key to finish your verification.

Activation Retry (Standard): Thank you for using the Microsoft’s sign-in verification system.  Please press the pound key to finish your verification.

Activation Greeting (PIN): Thank you for using Microsoft’s sign-in verification system.  Please enter your PIN followed by the pound key to finish your verification.

Activation Retry (PIN): Thank you for using Microsoft’s sign-in verification system.  Please enter your PIN followed by the pound key to finish your verification.

Extension Prompt: Thank you for using Microsoft’s sign-in verification system.  Please press pound key to continue.

Extension Prompt Before Digits: Thank you for using Microsoft’s sign-in verification system.  Please transfer this call to extension …

Extension Prompt After Digits: If already at this extension, press the pound key to continue.

Fraud Reported: If you did not initiate this verification, someone may be trying to access your account.  Please press 1 to submit a fraud alert.  This will notify your company’s IT team and block further verification attempts.

Fraud Confirmation: A fraud alert has been submitted.  To unblock your account, please contact your company’s IT help desk.

In Next Parts, we will discuss Azure MFA reporting, Caching, Fraud Alerts …etc. So Stay tuned 🙂

About Blogger …

Ahmad Yasin (MCSA office 365, MCSE : Messaging, Azure Certified)

Ahmad Yasin (MCSA office 365, MCSE : Messaging, Azure Certified)

Ahmad Yasin in a Microsoft Cloud Engineer and the Owner & publisher of AzureDummies blog. He also hold many certificates in office 365 and windows azure including Developing Microsoft Azure Solutions, Implementing Microsoft Azure Infrastructure Solutions and MCSA office 365.
Ahmad is currently working in Specialized Technical Services Company (STS).
Find Ahmad at Facebook and LinkedIn

Leave a Reply

Your email address will not be published. Required fields are marked *