I am working on a tenant which have 400++ sites, and we need to force this permission settings for external user sharing:-
Set the share permissions on all sites to allow for only external users if they are invited by email and requires MFA for a code sent to their email to authenticate
So is this something we can achieve? If the answer is Yes, then this need to be done on the site level or on the tenant level? If this need to be set on each site separately, then can we do this using Power shell? we can loop through all the sites inside the Power-shell, but how we can set this setting using Power shell?
Email is not one of the available MFA options.
The following additional forms of verification can be used with Azure AD - Multi-Factor Authentication: