Multifactor Authentication (MFA) is not enabled for guest users by default in Microsoft 365. To enable MFA, practices would need to manually enable the functionality, or use Microsoft 365 Security Defaults.
Note: The configuration of MFA falls outside the scope of support provided by FYI. If your practice requires assistance in enabling or disabling this functionality, please contact your IT Administrator.
Enabling MFA for New Collaborate will result in some guest users (clients) being prompted to complete the MFA process twice. If either MFA is not completed successfully, the client will be unable to log in to access shared documents.
When adding clients to New Collaborate, consider providing your clients with some instructions to help them get familiar with the login process. It's also beneficial to inform them that they may need to complete multifactor authentication (MFA) twice during the initial setup to ensure a smooth and secure experience.
If MFA is enabled in Microsoft Entra for guest users, when using a link to a shared document or folder, the login process for the client is as follows:
- The client will be prompted to log in using their email account
- Where the client's email address is a Microsoft account, or has its own MFA enabled, the client will be required to complete MFA for their personal email account.
- The client will then be prompted to set up and complete MFA for a second time to meet your practice's New Collaborate MFA requirements.