Partners who don't have the adequate amount of Entra ID P1 or P2 licenses required to display the correct MFA status would like the ability to hide the MFA status from their dashboard altogether.

In the MFA Status page there is a toggle for 'Billable' and 'Disabled'. If we select 'Disabled' it ONLY shows Disabled users, however, it would be more use to have a filter to NOT show disabled users, as these are blocked from Sign in.

365 MDR should be able to differentiate between MFA enabled vs enforced

Hi- there are some accounts that have MFA disabled on purpose, but have been secured by other means (primarily conditional access) and I would like to be able to note this where others can see it, so we know which accounts still need secured.

On a user's overview page, it would be really useful to see the MFA methods registered for that user and a timestamp of when each method was registered. It helps to give context when someone has been phished and the attacker registers their own MFA method.

It would be very handy to be able to export a list of all user accounts - showing the MFA status. We also can't filter accounts that are Blocked.

A few issues with account MFA detection.

-Accounts being flagged that don't yet have MFA but are behind conditional access policies that will force MFA if they attempt to log in

-Generic accounts that are locked down to specific office IPs but are not for a specific user who can setup MFA.

Would be great if there was detection for Conditional Access policies and the ability to exclude accounts that we can't apply MFA to with a specific reason.

In the MDR for 365 users screen, it is shown if MFA is enabled. It would be useful to show the enforcement method, either via legacy per user MFA, Conditional access policies, security defaults etc.

I would like to see an integration that allows Huntress to see MFA is enabled for MDR for M365 for third party vendors outside of Microsoft, such as Duo. Since MS currently is focusing on MFA enabled within Azure, would be nice to see if it is enabled in outside MFA vendors.