- Free Edition
- Quick Links
- Highlights
- Exchange Online
- Exchange Online Management
- Exchange Online Reports
- Exchange Online Auditing
- Exchange Online Monitoring
- Shared Mailbox Management
- Mailbox Usage Reports
- Exchange Online Mailbox Auditing
- Shared Mailbox Reports
- Exchange Online Delegation
- Mailbox Size Reports
- Mail Traffic Reports
- Non-owner Mailbox Access Report
- Public Folder Reports
- OWA Reports
- Mailbox Content Reports
- Entra ID
- Entra ID Management
- Entra ID Reports
- Entra ID Monitoring
- Entra ID Auditing
- User Management
- Contact Reports
- Security Group Reports
- License Reports
- Entra ID Delegation
- Microsoft 365 User Provisioning
- User Reports
- Distribution Group Reports
- Group Reports
- Inactive Exchange Users
- Entra ID User Auditing
- Entra ID Group Auditing
- Entra ID Logon Auditing
- Microsoft Teams
- OneDrive for Business
- SharePoint Online
- Security and compliance
- Other Features
- Related Products
- ADManager Plus Active Directory Management & Reporting
- ADAudit Plus Hybrid AD, cloud, and file auditing and security
- ADSelfService Plus Identity security with MFA, SSO, and SSPR
- Exchange Reporter Plus Exchange Server Auditing & Reporting
- M365 Security Plus Microsoft 365 Auditing and Alerting
- EventLog Analyzer Real-time Log Analysis & Reporting
- SharePoint Manager Plus SharePoint Reporting and Auditing
- DataSecurity Plus File server auditing & data discovery
- RecoveryManager Plus Enterprise backup and recovery tool
- AD360 Integrated Identity & Access Management
- Log360 (On-Premise | Cloud) Comprehensive SIEM and UEBA
- AD Free Tools Active Directory FREE Tools
The Entra MFA Registration Details report, one of M365 Manager Plus' Microsoft Entra ID reports , allows administrators to monitor the MFA capabilities of Entra users without the struggles posed by native admin centers.
What is the MFA Registration Details report in M365 Manager Plus?
The MFA Registration Details report gives details about Microsoft 365 user accounts and their current authentication posture. It primarily includes each user's MFA and SSPR registration status, whether the account is MFA capable, which authentication methods each user has registered, their default and preferred MFA methods, and the system-recommended authentication method based on Microsoft Entra ID's evaluation, along with other user properties.
Why you need an Entra MFA user registration details report
Microsoft states out of 600 million identity attacks every day, password-based attacks account for over 99% of them, making MFA a mandatory requirement to secure identities today. On the admin side, rolling out MFA across a Microsoft 365 tenant is rarely a one-step exercise. Configuring authentication method policies, setting up conditional access rules, and ensuring every user is enrolled with the right authentication method is a tedious process that spans across multiple menus and cluttered reports.
An MFA registration details report changes that by giving you a per-user breakdown of registration status, capability gaps, and method preferences—the data you need to improve your MFA rollout and your users' authentication posture.
- Understand which authentication methods users actually adopt: See the full distribution of registered methods across your tenant—like Microsoft Authenticator, FIDO2, phone, or SMS—to identify whether users are gravitating toward weaker options and adjust your MFA campaigns accordingly.
- Enforce MFA enrollment as part of security hygiene cycles: Track MFA adoption rates across your tenant and ensure that your MFA registration campaigns are actually encouraging users to register for MFA.
- Detect privileged accounts without MFA protection: Accounts belonging to CXOs and other administrative personnel configured without Entra MFA can act as an obvious entry point for bad actors inside your environment.
- Encourage MFA capable users to adopt MFA: Identify users who are MFA capable but haven't registered or adopted MFA completely and encourage them to complete their registration. Each gap represents a different operational problem and requires a different admin response.
- Build data to deprecate old MFA flows: Before deprecating SMS-based verification or mandating phishing-resistant MFA, use method registration data to quantify how many users would be affected and plan a phased migration that minimizes disruption.
What does the MFA Registration Details report show?
Using M365 Manager Plus, you can filter the MFA Registration Details report with the following fields.
- Microsoft 365 Tenant: Select the specific tenant where you want to audit MFA registration details.
- Virtual Tenants: If you have created virtual tenants to manage specific subsets of your organization, you can filter the report to show only Microsoft 365 users in that virtual tenant.
- Filter By: You can choose to view Microsoft 365 users from specific domains or belonging to particular groups.
The MFA Registration Details report displays the following details for every user.
| Attribute | Description |
|---|---|
| User Principal Name | The unique login identifier for the user (e.g., user@domain.com), used for authentication |
| Display Name | The name of the user |
| Multifactor Authentication Registered | Indicates whether the user has completed MFA registration in Microsoft Entra ID |
| Multifactor Authentication Capable | Indicates whether the user's account meets the technical prerequisites to use MFA |
| SSPR Capable | Indicates whether the user is eligible to use SSPR based on their registered methods |
| Methods Registered | A list of authentication methods the user has registered, such as Microsoft Authenticator, FIDO2 security key, or phone |
| MFA Status | The current MFA enforcement state of the user account |
| SSPR Registered | Indicates whether the user has registered for SSPR |
| SSPR Enabled | Indicates whether the SSPR policy is currently active for this user |
| Default Multifactor Authentication Method | The authentication method the user has set as their default for completing MFA challenges |
| System Preferred Authentication Method | The authentication method Microsoft Entra ID recommends for the user based on their available registered methods |
| System Preferred Authentication Method Enabled | Indicates whether the system-preferred authentication method nudge is active for this user |
| User Preferred Method for Secondary Authentication | The authentication method the user has explicitly designated as their preferred secondary authentication option |
Here are some more Entra user attributes that the MFA registration details report lists.
| Is Licensed | Blocked Credential | Business Phone | City | Company | Country / Region |
| Days Since Created | Days Since Last Password Change | Department | Employee ID | First Name | GUID |
| Is Admin User | Last Name | Last Password Changed | License Details | License Name | Mobile Phone |
| Object ID | Office | Password Never Expires | Passwordless Capable | Postal Code | Services |
| State | Street Address | Strong Password Required | Usage Location | User Type | When Created |
Native Microsoft 365 admin portals and PowerShell vs. M365 Manager Plus
Natively, auditing MFA status in Microsoft 365 means navigating to the Entra admin center and working through its authentication reporting surfaces—a process that quickly reveals its limitations when you need a precise, filterable view of users without any MFA registered.
The Entra admin center's User registration details report under the Authentication Methods activity section does list all users alongside their registered MFA methods and capabilities. Administrators needing more control often turn to Microsoft Graph PowerShell, querying the userRegistrationDetails resource type using the Get-MgReportAuthenticationMethodUserRegistrationDetail cmdlet.
While the Entra admin center and Graph PowerShell provide deep filtering and automation potential, they demands scripting expertise and manual scheduling, and any distribution of results requires additional steps to convert and format the data into a form that non-technical stakeholders can consume.
M365 Manager Plus' MFA Registration Details report provides the precision of Graph PowerShell combined with the convenience of an admin center through purpose-built reporting, one-click exports, and built-in scheduling, all without writing a single line of script.
| Capability | Microsoft 365 limitations | PowerShelllimitations | The M365 Manager Plus advantage |
|---|---|---|---|
| Report accessibility | 
Audit logs contain a multitude of events that you have to filter every time. |
Manual filtering is required before you generate the report. |
Individual, user-friendly reports are segregated and categorized for one-click access. |
| Custom reports | |
|
Created by saving granular attribute-based conditional filters once per custom report. |
| Report exports | CSV or JSON formats Bulk exports require multiple stages of confirmation | CSV or JSON formats Requires additional modules to export as PDF or XLSX | CSV, HTML, PDF, or XLSX,in a single click |
| Email reports to admins | |
|
Send right from the dashboard or report page in any supported formats without jumping between applications. |
| Automated report generation |
Requires complex add-ons like Power Automate. |
Requires complex Task Scheduler configurations. |
Multiple reports can be generated on a schedule, filtered, emailed, and exported automatically. |
For a more detailed comparison, check out this page on how to report the MFA status for users in Microsoft Entra ID.
Features that enhance the MFA Registration Details report
M365 Manager Plus provides several built-in tools to help you manage, automate, and secure the data found in the MFA Registration Details report:
- Export reports: You can download the report in multiple formats, including CSV, PDF, HTML, or XLSX, for sharing data with department heads or maintaining offline records for compliance.
- Automated report generation: Set the MFA registration details report to be generated at specific intervals—daily, weekly, or monthly—to run MFA coverage audits regularly.
- MFA settings: If the MFA registration details report reveals users with no MFA or legacy MFA methods registered, you can add authentication methods, remove outdated ones, or enforce an MFA reset directly from the reporting interface without switching portals. This allows your security team to act on gaps the moment they are identified.
- Microsoft 365 joiner and leaver automations: You can link the data from the MFA registration details report into automated Microsoft 365 workflows in M365 Manager Plus. For example, an automation policy can trigger an MFA enrollment prompt or assign an authenticator app for new users created without a registered MFA method.
- Microsoft 365 alerts for users without MFA: Configure real-time alerts to notify your security teams if MFA is disabled for a user or if too many users have their MFA disabled at the same time.
Reports that complement the MFA registration details report
If you plan on strengthening your tenant's Entra MFA adoption, M365 Manager Plus provides several other reports that complement the data found in the MFA Registration Details report:
- MFA Disabled Users report: Lists all users for whom MFA has been explicitly disabled, giving you a direct view of accounts that are fully unprotected and need immediate attention.
- MFA Status report: Provides a tenant-wide summary of MFA enforcement states, such as Enabled, Enforced, or Disabled, for quick coverage assessment alongside the detailed registration data.
- Recently Created Users report: Tracks newly provisioned accounts and cross-references them against MFA registration data to catch onboarding gaps before they become security blind spots.
- Entra ID sign-in activity report s : Audit authentication events to verify that users flagged as MFA registered are completing MFA challenges as expected during sign-in.
Other features of M365 Manager Plus
Microsoft Entra ID management: Create, modify, and delete users, groups, licenses in bulk without Microsoft Graph PowerShell and simplify your Microsoft 365 identity management.
Microsoft 365 reporting: Leverage over 700 prebuilt and custom reports across major Microsoft 365 services, such as Exchange Online, SharePoint Online, Teams, and OneDrive for Business, all from one dashboard.
Microsoft 365 management: Manage users, groups, mailboxes, Teams, SharePoint permissions, and license assignments across workloads without switching portals.
Microsoft 365 automation: Automate onboarding, offboarding, license provisioning, and group updates with no-code workflows and without any add-on subscriptions.
Microsoft 365 auditing: Maintain a complete, searchable audit trail of every change across your Microsoft 365 environment.
Microsoft 365 alerting: Get real-time alerts on suspicious sign-ins, admin role changes, license breaches, and policy violations.
Microsoft 365 admin delegation: Give help desk staff scoped access to specific tasks such as password resets, group changes, mailbox management, without full admin rights or visibility over the users they don't manage.