Tuesday, December 1, 2020

Disable Two Factor Authentication on Business Central Demo Sandbox Environments

 By Steve Endow

I have created a Business Central SaaS demo sandbox tenant by following the steps outlined by Erik Hougaard in his video here:

https://www.youtube.com/watch?v=u_anE1exnPM


UPDATE:  Microsoft has changed the "Sign Up" process for a new Microsoft account. See the comments below Erik's video for a direct link to the new account page.


The new Business Central sandbox works great at first, but after a few days, when you login to the demo Business Central tenant, you will be prompted to enable Two Factor Authentication for the demo Microsoft login.


This is due to enhanced Azure security settings called "Security Defaults".  While these settings are probably a good thing for most organizations, I don't need 2FA for a demo BC sandbox.

Here's how to turn off Azure Security Defaults.


Login to portal.azure.com using your demo Microsoft login

Expand the Azure menu on the left and click on Azure Active Directory


On the Azure Active Directory Overview page, scroll down the menu on the left and click on Properties


When the Tenant properties page is displayed, scroll to the bottom and click on Manage Security defaults


The Enable Security defaults option should be displayed


Change the setting to No

Click on Save


This should disable 2FA for the Business Central demo tenant.


Steve Endow is a Microsoft MVP in Los Angeles.  He works with Dynamics 365 Business Central, Microsoft Power Automate, Power Apps, Azure, .NET, Dynamics GP, and SQL Server.

You can also find him on Twitter and YouTube

https://www.precipioservices.com