I need some assistance with transitioning control of a new Office 365 tenant I set up for my old boss, who is leaving our organization. Specifically, after migrating his email and domain to the new account, I registered Multi-Factor Authentication (MFA) on my iPhone using the Microsoft Authenticator app. What steps do I need to follow to remove my MFA setup and give him control over it since he also has the Microsoft Authenticator on his iPhone? Any help would be greatly appreciated!
4 Answers
You can remove your authentication factors via the Entra Portal or by going to mysignins.microsoft.com. To be safe, you might want to invalidate all logins and check if he still has access. I also recommend setting up a second admin user with different factors for extra security.
Another option is to log into the admin portal and navigate to Identity (or Entra ID). Find his user profile and go to authentication methods to reset it. He can set up his MFA using the Office 365 portal. Just make sure to use a separate account for the global admin and not the licensed 365 user.
You could also register his device as an alternate MFA method and verify that it works before removing yours. Just make sure he knows how to access those screens!
You can do this really quickly! Just go to aka.ms/mfasetup. Log in, click on 'Add Authentication Method', and enroll his phone. Once that’s set up, you can remove your own MFA. It takes only a couple of minutes!
Wow thanks so much!