The reports found under MFA Enrollment Reports (Reports > MFA Reports) provide information on users' enrollment and their usage of multi-factor authentication (MFA) on various endpoints. Actions like disenrollment and deletion of saved MFA trusts can also be performed through these reports.
There are 13 MFA reports:
The Enrolled Users report provides you with the list of users who have enrolled themselves in ADSelfService Plus. Enrollment provides users with access to the password reset and account unlock portal. It also protects the user accounts through the MFA methods the users have enrolled for. The report displays the users' mail addresses, users' mobile numbers, OU, the time of enrollment and the last time the enrollment was modified of the users. Click here for report generation steps.
The Non-Enrolled Users Report highlights the list of users who are yet to enroll in the ADSelfService Plus application. This includes users who do not have ADSelfService Plus licenses assigned to them and users with ADSelfService Plus licenses but haven't enrolled with the product yet. The report also displays the mail addresses and mobile numbers of the users, and the OU to which they belong. Click here for report generation steps.
The MFA Enrollment Audit Report provides information about each MFA enrollment action. Click here for report generation steps.
The MFA Usage Audit Report offers details about all MFA attempts made by users. Click here for report generation steps.
The report on MFA Usage for Machines/VPN/OWA provides data on how users utilize MFA when logging in to machines running Windows, macOS, or Linux, as well as VPNs and OWA/EAC Click here for report generation steps.
The MFA Usage from Mobile Devices report presents data on MFA attempts made through the ADSelfService Plus mobile app on iOS and Android devices, as well as via mobile browsers. Click here for report generation steps.
The MFA Failures Report displays details of every unsuccessful MFA attempt.Click here for report generation steps.
The MFA Trusted Browsers Report offers details on the existing user-browser trusts.Click here for report generation steps.
The MFA Trusted Machines report displays details of active user-device trusts.Click here for report generation steps.
The Security Questions Report creates a list of users who have enrolled in the Security Questions and Answers authenticator, including their corresponding security questions and answers. It helps you to keep track of the MFA information provided by users for this authentication method. Click here for report generation steps.
The Backup Code Usage Report displays details of backup codes usage or generation for ADSelfService Plus accounts.Click here for report generation steps.
The Offline MFA Enrolled Machines Report presents a list of machines that have been registered for offline MFA in ADSelfService Plus. Click here for report generation steps.
This report presents information about all the FIDO passkeys registered to users within a domain. It includes details such as the username, time of the last successful MFA attempt, the passkey type, the enrollment time, and the type of endpoint used for the last successful FIDO authentication. Admins can also disenroll users' FIDO passkeys directly from the report.Click here for report generation steps.
Copyright © 2024, ZOHO Corp. All Rights Reserved.