How to Confirm Email Tenant Technology Requirements

How to Confirm Email Tenant Technology Requirements

If using Microsoft/Azure:

1. Multi-Factor Authentication (MFA)

  1. Sign in to the Microsoft Entra Admin Center:
  2. In the left menu, go to:
    Security → Authentication methods → Policies
  3. Select Microsoft Authenticator (or the MFA method in use).
  4. Confirm that the Enable slider is turned ON.
    • You may also see additional enforcement through Conditional Access -Policies (Security → Conditional Access → Policies).
  5. Take a screenshot of this page showing that MFA is enabled.

This screenshot proves MFA is enabled for your tenant.

2. Smart Lock-Out Policy.

  1. In the Microsoft Entra Admin Center, go to:
    Security → Authentication methods → Password protection
  2. Look for the Smart lockout settings.
  3. Confirm the following settings (default or stricter):
    • Lockout threshold: 5 attempts or fewer
    • Lockout duration in seconds: long enough to prevent abuse (default is 60 seconds, extended duration is recommended)
  4. Take a screenshot of this page showing the Smart Lock-Out settings.

This screenshot proves Smart Lock-Out is active in your tenant.


If using Google Workspace:

1. Multi-Factor Authentication (2SV/MFA)

  1. Sign in to the Google Admin Console:
  2. In the left menu, go to:
    Security → Authentication → 2-step verification
  3. Confirm that 2-Step Verification is enforced (ON/Required) for your organizational unit.
  4. Take a screenshot of this page showing the enforcement setting.

This screenshot proves MFA is enabled.

2. Lock-Out Protection (Suspicious Login + Recovery Information)

Google automatically locks accounts after multiple failed login attempts. For this to work, Recovery Information must be enabled in your tenant.

  1. In the Google Admin Console, go to:
    Security → Overview → Account Recovery → Recovery Information
  2. Make sure the option to Allow users to set recovery information is turned ON.
  3. Take a screenshot of this page showing the Recovery Information setting enabled.

This screenshot proves Smart Lock-Out functionality is active, since users can only recover after lockouts if recovery is enabled.


    • Related Articles

    • Mutual Technology & Cybersecurity Minimum Requirements

      The information below outlines the minimum technology and cybersecurity requirements for all systems used by associated persons of Mutual Securities, Inc. or Mutual Advisors, LLC (collectively “Mutual Group”). Report all security incidents to Mutual ...

    • Technology Case Map

      Technology Department Case Topic A little more Specific Description Support – Internal  N/A This topic is currently for internal employees only and will eventually be moved Transition and Onboarding Initiation To alert IT of a potential new client ...

    • DocuSign Requirements

      As of April 20, 2025, any DocuSign on Mutual's paperwork will require Knowledge-Based Authentication (KBA authentication) to be shown as passed on the Certification of Completion pages. Knowledge-Based Authentication (KBA) verifies a client's ...

    • Department Extensions

      Department Team Extension Service & Operations Advisory Services 811 Service & Operations Brokerage 810 Service & Operations Non-Brokerage 824 Service & Operations Hybrid Trading (800-750-7862) 350 Service & Operations Investment Management Platform ...

    • Mutual Securities, Inc. Written Supervisory Manual

      Mutual Securities, Inc. WSP Manual