Microsoft is set to roll out a new feature for its Authenticator app that will enable number matching for multi-factor authentication (MFA). Beginning February 27, 2023, all users of the Microsoft Authenticator app will be able to use number matching to verify their identity when logging in to Microsoft services with MFA enabled.

With this new change, users will see an MFA prompt when logging in to Microsoft services. They will be prompted to match a number displayed on the screen and to input the number on their Authenticator app manually. This added layer of security will help to prevent unauthorised access to user accounts and overall strengthen organisations security.
As the rollout of this feature begins, users may see number matching in approval requests for some services but not others. To ensure that all users have a consistent experience, it is highly recommended that administrators use the Azure portal or Graph API to roll out number matching for all Microsoft Authenticator users.
Enable number matching in the portal
To activate number matching in the Azure AD portal, perform the following actions:
- Go to the Azure AD portal and select Security > Authentication methods > Microsoft Authenticator.
- On the “Enable and Target” tab, select “Yes” and “All users” to enable the policy for all users, or select specific users or groups. Set the authentication mode for these users/groups to “Any” or “Push.”
Only users who are enabled for Microsoft Authenticator will be able to use number matching for sign-in or be excluded from it. Users who are not enabled for Microsoft Authenticator will not have access to this feature.

- Go to the “Configure” tab in the Azure AD portal.
- Under “Require number matching for push notifications,” change the status to “Enabled.”
- Select the users or groups you want to include or exclude from number matching.
- Click “Save” to apply the changes.

Conclusion
Microsoft’s new number matching feature for its Authenticator app will provide added security for users when logging in to Microsoft services. The feature will be available for all users starting February 27, 2023, and it is recommended that administrators use the Azure portal or Graph API to roll out the feature for all users. If you have any questions or need assistance with the new Microsoft MFA changes, feel free to book a meeting with one of our IT experts today.