- Sign in as an Administrator: Log in to the Microsoft 365 Admin Center with your admin account.
- Navigate to Users: Go to “Users” and then “Active Users.”
- Multi-Factor Authentication: Click on “Multi-Factor Authentication” under the “More” options.
4. Manage User Settings:
Select the user(s) you want to enable or disable the Authenticator for. You will see options to enable, disable, or enforce multi-factor authentication (MFA).
You may receive “Enable multifactor authentication popup. Just click Enable.
5. Save Changes: Make the necessary changes and save them.
You can also use Azure to enable or disable MFA.
Go to Users: In the Azure Active Directory, select “Users” and then “All Users.”
Search the user.
Click on the user.
Click on Authentication methods.
Click on Revoke multifactor authentication sessions to disable it.
Click on Add authentication method to setup MFA.
Click on Require re-register multifactor authentication.
If the ‘Disable MFA’ or ‘Revoke multifactor authentication sessions’ options are grayed out, it indicates that your company enforces a policy requiring all users to have multi-factor authentication (MFA) enabled.
To find the policy, go to Microsoft Entra admin center> Security Center, Conditional Access,
Policy where you can view all policies.