Spam email and text message from one employee within company


It looks like you setup a group to enforce 2FA on, and then put users in it. So you'd just put a few in at a time as schedule permits you to do the required training.

M365 makes this a ton easier, as you simply disable security defaults and turn users on in batches.

But it seems you can turn it on but not enforce it, then track enrollment... so people over time would presumably enroll themselves, but if they don't they still work until you can get to them.
 
Back
Top