Microsoft 365 / Entra ID

Export MFA status, conditional access policies, and security defaults from Microsoft Entra ID (Azure AD).

UC-01UC-02UC-03UC-13~20 min

Steps

  1. 1
    Sign in to Microsoft Entra admin center

    Go to entra.microsoft.com and sign in with a Global Admin or Security Reader role.

  2. 2
    Export MFA registration status

    Navigate to Protection > Authentication methods > Activity. Download the "User registration details" report as CSV.

  3. 3
    Screenshot conditional access policies

    Go to Protection > Conditional Access > Policies. Screenshot each policy showing grant controls (Require MFA, etc.).

  4. 4
    Check security defaults

    Navigate to Identity > Overview > Properties. Screenshot the "Security defaults" setting.

  5. 5
    Export sign-in logs

    Go to Monitoring > Sign-in logs. Filter for last 30 days and download as CSV.

Tips

  • Requires at least Entra ID P1 license for conditional access policy export.
  • Security defaults provide baseline MFA but may not satisfy all carrier requirements.
  • Use the Microsoft Graph API for automated evidence collection.

Automate Microsoft 365 / Entra ID evidence collection with BindLedger connectors

Create Free Account →