A Bypass Code Was Used To Successfully Sign In

Detects use of bypass codes to sign in instead of MFA. Bypass codes are issued when a user has lost their phone or asks for temporary access. Users should not be assigned bypass codes or run in bypass mode.

Recommended Actions

Open a ticket to investigate if the use of bypass code was legitimate. Revoke the bypass code if possible and consider updating internal policies to block bypass codes with no expiration date or usage count.

Compatibility

Duo

Microsoft Entra ID

PreviousShared Mailbox Successful Sign InNextAccess From Dormant Account

Last updated