{"id":62268,"date":"2023-07-31T11:27:10","date_gmt":"2023-07-31T09:27:10","guid":{"rendered":"https:\/\/www.bestonline.cz\/?p=62268"},"modified":"2023-07-31T11:27:59","modified_gmt":"2023-07-31T09:27:59","slug":"povinna-migrace-zasad-vicefaktoroveho-overovani-a-samoobsluzneho-resetovani-hesla","status":"publish","type":"post","link":"https:\/\/www.bestonline.cz\/povinna-migrace-zasad-vicefaktoroveho-overovani-a-samoobsluzneho-resetovani-hesla\/","title":{"rendered":"Povinn\u00e1 migrace z\u00e1sad v\u00edcefaktorov\u00e9ho ov\u011b\u0159ov\u00e1n\u00ed a samoobslu\u017en\u00e9ho resetov\u00e1n\u00ed hesla"},"content":{"rendered":"\n
Od 30. z\u00e1\u0159\u00ed 2024 budou star\u0161\u00ed z\u00e1sady v\u00edcefaktorov\u00e9ho ov\u011b\u0159ov\u00e1n\u00ed a samoobslu\u017en\u00e9ho resetov\u00e1n\u00ed hesla zastaral\u00e9 a v\u0161echny st\u00e1vaj\u00edc\u00ed metody ov\u011b\u0159ov\u00e1n\u00ed se budou se nad\u00e1le spravovat pouze v nov\u00fdch z\u00e1sad\u00e1ch metod ov\u011b\u0159ov\u00e1n\u00ed v Microsoft Entra (d\u0159\u00edve Azure Active Directory nebo zkr\u00e1cen\u011b Azure AD). <\/p>\n\n\n\n
Microsoft za t\u00edmto \u00fa\u010delem zprovoznil ovl\u00e1dac\u00ed prvek, kter\u00fdm m\u016f\u017eete spravovat migraci ze star\u0161\u00edch z\u00e1sad na nov\u00e9 sjednocen\u00e9 z\u00e1sady.<\/p>\n\n\n\n Za\u010dn\u011bte dokumentov\u00e1n\u00edm metod, kter\u00e9 jsou dostupn\u00e9 ve star\u0161\u00edch z\u00e1sad\u00e1ch MFA. P\u0159ihlaste se k\u00a0Azure Portal<\/a>\u00a0jako\u00a0glob\u00e1ln\u00ed spr\u00e1vce<\/a>. Pokud chcete zobrazit nastaven\u00ed, p\u0159ejd\u011bte na U\u017eivatel\u00e9<\/strong>>V\u0161ichni u\u017eivatel\u00e9<\/strong>>V\u00edcefaktorov\u00e9<\/strong> ov\u011b\u0159ov\u00e1n\u00ed<\/strong>. P\u0159epn\u011bte se do nastaven\u00ed platn\u00e9 pro cel\u00e9ho tenanta:<\/p>\n\n\n\n U ka\u017ed\u00e9 metody si v\u0161imn\u011bte, jestli je pro tenanta povolen\u00e1. N\u00e1sleduj\u00edc\u00ed tabulka uv\u00e1d\u00ed metody dostupn\u00e9 ve star\u0161\u00edch z\u00e1sad\u00e1ch v\u00edcefaktorov\u00e9ho ov\u011b\u0159ov\u00e1n\u00ed a odpov\u00eddaj\u00edc\u00ed metody v z\u00e1sad\u00e1ch metody ov\u011b\u0159ov\u00e1n\u00ed.<\/p>\n\n\n\n Pokud chcete z\u00edskat metody ov\u011b\u0159ov\u00e1n\u00ed dostupn\u00e9 ve star\u0161\u00edch z\u00e1sad\u00e1ch SSPR, p\u0159ejd\u011bte na Metody ov\u011b\u0159ov\u00e1n\u00ed<\/strong>\u00a0pro Resetov\u00e1n\u00ed hesla<\/strong> v p\u016fvodn\u00edm Azure Active Directory<\/strong>. <\/p>\n\n\n\n Poznamenejte si, kte\u0159\u00ed u\u017eivatel\u00e9 jsou v rozsahu pro SSPR (v\u0161ichni u\u017eivatel\u00e9, jedna konkr\u00e9tn\u00ed skupina nebo \u017e\u00e1dn\u00ed u\u017eivatel\u00e9) a metody ov\u011b\u0159ov\u00e1n\u00ed, kter\u00e9 m\u016f\u017eou pou\u017e\u00edt. I kdy\u017e bezpe\u010dnostn\u00ed ot\u00e1zky je\u0161t\u011b nejsou k dispozici ke spr\u00e1v\u011b v z\u00e1sad\u00e1ch Metody ov\u011b\u0159ov\u00e1n\u00ed, nezapome\u0148te si je zaznamenat na pozd\u011bji, a\u017e budou.<\/p>\n\n\n\n Pokud chcete zkontrolovat nastaven\u00ed v z\u00e1sad\u00e1ch Metody ov\u011b\u0159ov\u00e1n\u00ed, p\u0159ihlaste se jako\u00a0spr\u00e1vce z\u00e1sad ov\u011b\u0159ov\u00e1n\u00ed<\/a>\u00a0a p\u0159ejd\u011bte na Z\u00e1sady metod <\/strong>ov\u011b\u0159ov\u00e1n\u00ed <\/strong>v Azure Active Directory<\/strong>. Ka\u017ed\u00fd nov\u00fd tenant m\u00e1 ve sv\u00e9m v\u00fdchoz\u00edm nastaven\u00ed v\u0161echny metody\u00a0vypnut\u00e9<\/strong>, co\u017e usnad\u0148uje migraci, proto\u017ee star\u0161\u00ed nastaven\u00ed z\u00e1sad nen\u00ed pot\u0159eba slou\u010dit se st\u00e1vaj\u00edc\u00edmi nastaven\u00edmi.<\/p>\n\n\n\nJak se p\u0159ipravit?<\/h2>\n\n\n\n
1. Zkontrolujte star\u0161\u00ed z\u00e1sady v\u00edcefaktorov\u00e9ho ov\u011b\u0159ov\u00e1n\u00ed<\/h3>\n\n\n\n
Z\u00e1sady v\u00edcefaktorov\u00e9ho ov\u011b\u0159ov\u00e1n\u00ed<\/th> Z\u00e1sady metody ov\u011b\u0159ov\u00e1n\u00ed<\/th><\/tr><\/thead> Vol\u00e1n\u00ed na telefon<\/td> hlasov\u00e9 hovory<\/td><\/tr> Textov\u00e1 zpr\u00e1va na telefon<\/td> SMS<\/td><\/tr> Ozn\u00e1men\u00ed prost\u0159ednictv\u00edm mobiln\u00ed aplikace<\/td> Microsoft Authenticator<\/td><\/tr> Ov\u011b\u0159ovac\u00ed k\u00f3d z mobiln\u00ed aplikace nebo hardwarov\u00e9ho tokenu<\/td> Softwarov\u00e9 tokeny OATH t\u0159et\u00edch stran
Hardwarov\u00e9 tokeny OATH (zat\u00edm nejsou k dispozici)
Microsoft Authenticator<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n2. Projd\u011bte si star\u0161\u00ed z\u00e1sady samoobslu\u017en\u00e9ho resetov\u00e1n\u00ed hesla.<\/h3>\n\n\n\n
Metody ov\u011b\u0159ov\u00e1n\u00ed SSPR<\/th> Z\u00e1sady metody ov\u011b\u0159ov\u00e1n\u00ed<\/th><\/tr><\/thead> Ozn\u00e1men\u00ed v mobiln\u00ed aplikaci<\/td> Microsoft Authenticator<\/td><\/tr> K\u00f3d mobiln\u00ed aplikace<\/td> Microsoft Authenticator
Softwarov\u00e9 tokeny OATH<\/td><\/tr>E-mail<\/td> Email jednor\u00e1zov\u00e9 heslo<\/td><\/tr> Mobiln\u00ed telefon<\/td> hlasov\u00e9 hovory
SMS<\/td><\/tr>Telefon do kancel\u00e1\u0159e<\/td> hlasov\u00e9 hovory<\/td><\/tr> Bezpe\u010dnostn\u00ed ot\u00e1zky<\/td> Zat\u00edm nen\u00ed k dispozici; ot\u00e1zky t\u00fdkaj\u00edc\u00ed se kop\u00edrov\u00e1n\u00ed pro pozd\u011bj\u0161\u00ed pou\u017eit\u00ed<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n 3. Zkontrolujte z\u00e1sady metod ov\u011b\u0159ov\u00e1n\u00ed<\/h3>\n\n\n\n