Tuesday, December 1, 2020

Disable Two Factor Authentication on Business Central Demo Sandbox Environments

 By Steve Endow

I have created a Business Central SaaS demo sandbox tenant by following the steps outlined by Erik Hougaard in his video here:


UPDATE:  Microsoft has changed the "Sign Up" process for a new Microsoft account. See the comments below Erik's video for a direct link to the new account page.

The new Business Central sandbox works great at first, but after a few days, when you login to the demo Business Central tenant, you will be prompted to enable Two Factor Authentication for the demo Microsoft login.

This is due to enhanced Azure security settings called "Security Defaults".  While these settings are probably a good thing for most organizations, I don't need 2FA for a demo BC sandbox.

Here's how to turn off Azure Security Defaults.

Login to portal.azure.com using your demo Microsoft login

Expand the Azure menu on the left and click on Azure Active Directory

On the Azure Active Directory Overview page, scroll down the menu on the left and click on Properties

When the Tenant properties page is displayed, scroll to the bottom and click on Manage Security defaults

The Enable Security defaults option should be displayed

Change the setting to No

Click on Save

This should disable 2FA for the Business Central demo tenant.

Steve Endow is a Microsoft MVP in Los Angeles.  He works with Dynamics 365 Business Central, Microsoft Power Automate, Power Apps, Azure, .NET, Dynamics GP, and SQL Server.

You can also find him on Twitter and YouTube


How many digits can a Business Central Amount field actually support?

 by Steve Endow (If anyone has a technical explanation for the discrepancy between the Docs and the BC behavior, let me know!) On Sunday nig...