O365 has a slightly different MFA than Azure AD.
- Azure AD MFA
— Go into Azure Portal–> AD –> Users — > enable MFA per user –> Service Settings (allow users to create app passwords, for apps that don’t support MFA)
— Users can be sent to a URL to set up their own MFA setting
— Azure Charges Per User (not per SMS etc.),
— Can manage MFA in office vs. Out of office – by adding trusted IPs in Azure dashboard
- One Time Password is used when your regular MFA device fails (say you lose your phone).