{"id":37900,"date":"2025-07-29T06:10:56","date_gmt":"2025-07-29T10:10:56","guid":{"rendered":"https:\/\/www.eginnovations.com\/blog\/?p=37900"},"modified":"2026-06-11T05:11:48","modified_gmt":"2026-06-11T09:11:48","slug":"multi-factor-authentication-for-synthetic-monitoring-for-avd","status":"publish","type":"post","link":"https:\/\/www.eginnovations.com\/blog\/multi-factor-authentication-for-synthetic-monitoring-for-avd\/","title":{"rendered":"MFA for Synthetic Monitoring in Azure Virtual Desktop (AVD) Environments"},"content":{"rendered":"<div class=\"inner_content\">\n<h2><span class=\"ez-toc-section\" id=\"Why_MFA_is_Critical_for_Synthetic_Monitoring_Remote_Access\"><\/span>Why MFA is Critical for Synthetic Monitoring &#038; Remote Access<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Learn how MFA and TOTP-based authentication improve security for synthetic monitoring in Azure Virtual Desktop (AVD) environments. Today, I\u2019ll cover some of the basics of monitoring Multi-Factor Authentication and why ensuring MFA is implemented is essential, particularly in environments where remote access is possible. I\u2019ll cover some recent, specific case studies where a lack of MFA has led to security breaches and the mechanisms the bad actors used.<\/p>\n<p>Finally, I will also cover some tips and MFA best practices including how to ensure synthetic monitoring and simulated testing does not become an Achilles\u2019 heel and weak point in your AVD monitoring strategy.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"What_is_Multi-Factor_Authentication_MFA\"><\/span>What is Multi-Factor Authentication (MFA)?<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>The <a class=\"link\" href=\"https:\/\/www.cisa.gov\/topics\/cybersecurity-best-practices\/multifactor-authentication\" target=\"blank\">CISA states that MFA (Multi-Factor Authentication)<\/a> prevents unauthorized access to your data and applications by requiring a second method of verifying your identity, making you much more secure.<\/p>\n<p>By \u201ca second method\u201d, this means at least one secondary method to verify identity. 2-FA (Two Factor Authentication) is a sub-genre of using 2 methods but MFA is a broader church that can encompass the use of a combination of two or more methods for verifying identity.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"Why_MFA_is_Essential_for_Azure_Virtual_Desktop_Security\"><\/span>Why MFA is Essential for Azure Virtual Desktop Security<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Historically, many organizations relied on a kind of implied form of MFA. User accounts were primarily protected by a password, a degree of secondary protection was provided by the fact that users were expected to access resources from on-premises hardware connected to private networks. Anyone using the password could be assumed to be literally within the building.<\/p>\n<p>Multi-Factor Authentication (MFA) is now essential for remote access because it strengthens security in environments where traditional perimeter defenses such as office firewalls can no longer provide implied protection.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"Common_Password_Attack_Methods_Security_Risks\"><\/span>Common Password Attack Methods &#038; Security Risks<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p style=\"margin-bottom: 15px;\">I\u2019ll cover some recent case study of breaches that will equip you with data points and resources around which you can formulate an MFA strategy but first let\u2019s recap on some of the nomenclature around mechanisms that compromise passwords. Passwords can be compromised in many ways, common methods include:<\/p>\n<ul>\n<li><strong>Phishing attacks:<\/strong> Trick users into revealing passwords via fake emails or websites.<\/li>\n<li><strong>Keylogging malware:<\/strong> Records keystrokes to capture login credentials.<\/li>\n<li><strong>Credential stuffing:<\/strong> Uses leaked credentials from one site to access others.<\/li>\n<li><strong>Brute force attacks:<\/strong> Repeatedly guesses passwords until one works.<\/li>\n<li><strong>Password reuse across sites:<\/strong> A breach on one site compromises others.<\/li>\n<li><strong>Social engineering:<\/strong> Manipulates users into giving away their passwords.<\/li>\n<li><strong>Data breaches\/leaks:<\/strong> Exposes large databases of passwords.<\/li>\n<li><strong>Shoulder surfing:<\/strong> A bad actor observes users typing passwords in public.<\/li>\n<li><strong>Insecure password storage:<\/strong> Stores passwords in plain text or weakly hashed formats.<\/li>\n<li><strong>Man-in-the-middle (MITM) attacks:<\/strong> Intercepts credentials during transmission.<\/li>\n<\/ul>\n<h2><span class=\"ez-toc-section\" id=\"Real-World_Security_Breaches_Caused_by_Missing_MFA\"><\/span>Real-World Security Breaches Caused by Missing MFA<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>The postmortem-like analysis of several high-profile breaches that could have been avoided if MFA was in-place have raised awareness of the need for IT administrators to identify systems that are not enforcing MFA.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"1_The_British_Library_ransomware_attack_Oct_2023\"><\/span>1. The British Library ransomware attack (Oct 2023)<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Attackers accessed a Terminal Services server used by third-party contractors on which no MFA was enforced, leading to a 600 GB data leak. The British Library have been incredibly transparent and published their in-depth analysis, many summary articles have been written such as &#8211; <a class=\"link\" href=\"https:\/\/www.infosecurity-magazine.com\/news\/third-party-mfa-british-library\/\" target=\"blank\">Third-Party Breach and Missing MFA Led to British Library Attack &#8211; Infosecurity Magazine<\/a>. It is however worth reading the Library\u2019s own full report, available here: <a class=\"link\" href=\"https:\/\/www.bl.uk\/home\/british-library-cyber-incident-review-8-march-2024.pdf\/\" target=\"blank\">bl.uk\/home\/british-library-cyber-incident-review-8-march-2024.pdf\/<\/a>.<\/p>\n<p style=\"margin-bottom: 15px;\">Key points:<\/p>\n<ul>\n<li>The Library were unable to ascertain for sure how the passwords were compromised, mooting &#8211; \u201cThe most likely source of the attack is therefore the compromise of privileged account credentials, possibly via a phishing or spear-phishing attack or a brute force attack where passwords are repeatedly tried against a user\u2019s account.\u201d<\/li>\n<li>The Library\u2019s own report concluded: \u201cMulti-factor authentication needs to be in place on all internet-facing endpoints, regardless of any technical difficulties in doing so. The Library had MFA in place for all end-user technologies, but not on certain supplier endpoints.\u201d<\/li>\n<\/ul>\n<h3><span class=\"ez-toc-section\" id=\"2_British_Airways_Data_Breach_-_2018\"><\/span>2. British Airways Data Breach &#8211; 2018<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Attackers used stolen credentials from a Swissport (third-party cargo handling contractor) employee, which lacked MFA protection. They accessed a Citrix environment and eventually compromised domain admin credentials stored in plaintext.<\/p>\n<p>The absence of multi-factor authentication allowed attackers to use those credentials without any second layer of defense. The hackers then installed a custom skimming script that captured the personal and payment card data (including CVV codes) of approximately 380,000 customers.<\/p>\n<p>In October 2020 the UK Information Commissioner&#8217;s Office (ICO) fined British Airways \u00a320 million for breaches of General Data Protection Regulations related to the breach. A legal claim by customers who had been affected by the breach was settled out of court in 2021.<\/p>\n<p>Interestingly, the logging and storing of the credit card details (including, in most cases, CVV codes) was not an intended design feature of British Airways&#8217; systems and was not required for any particular business purpose. This was a test feature inadvertently left running through \u201chuman error\u201d.<\/p>\n<p>A fuller analysis can be read, here: <a class=\"link\" href=\"https:\/\/en.wikipedia.org\/wiki\/British_Airways_data_breach\" target=\"blank\">British Airways data breach &#8211; Wikipedia<\/a>.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"3_Microsoft_corporate_breach_Late_2023Jan_2024\"><\/span>3. Microsoft corporate breach (Late 2023\/Jan 2024)<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Russian\u2011aligned group Midnight Blizzard compromised a legacy test tenant account without MFA, gaining access to senior exec emails. The initial breach was achieved through a low-volume password spraying technique.<\/p>\n<p>Midnight Blizzard leveraged their initial access to identify and compromise a legacy test OAuth application that had elevated access to the Microsoft corporate environment. The actor created additional malicious OAuth applications.<\/p>\n<p>Read more: <a class=\"link\" href=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2024\/01\/25\/midnight-blizzard-guidance-for-responders-on-nation-state-attack\/\" target=\"blank\">Midnight Blizzard: Guidance for responders on nation-state attack | Microsoft Security Blog<\/a>.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"Security_Risks_of_Operating_Without_MFA\"><\/span>Security Risks of Operating Without MFA<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Beyond the lack of MFA, other significant factors can be seen in the few examples I\u2019ve highlighted. We see:<\/p>\n<ul>\n<li>Missing MFA means easy initial access with stolen credentials<\/li>\n<li>A lack of MFA allows attacks via mechanism such as password spraying<\/li>\n<li>Third-party contractor accounts treated as less of a risk than others with external access<\/li>\n<li>Legacy test systems and accounts are often overlooked<\/li>\n<\/ul>\n<h2><span class=\"ez-toc-section\" id=\"How_MFA_Improves_Synthetic_Monitoring_in_AVD\"><\/span>How MFA Improves Synthetic Monitoring in AVD<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Synthetic monitoring is a proactive method of monitoring application and service performance by simulating user interactions or transactions at regular intervals from specific locations.<\/p>\n<p>By regularly probing logons and user workflows with robot users periodically, administrators can discover issues before real users are impacted.<\/p>\n<p>eG Enterprise offers a full range of synthetic monitoring features for AVD from a logon simulator to full-session multi-app workflow simulators. To protect your systems we offer a range of options for implementing MFA when using synthetic monitoring for AVD or the other digital workspace technologies supported by eG Enterprise.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"How_to_Use_TOTP_Time-Based_One-Time_Password_for_Two-Factor_Authentication_in_AVD_Environments\"><\/span>How to Use TOTP (Time-Based One-Time Password) for Two-Factor Authentication in AVD Environments<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Two-Factor Authentication (2FA) adds an extra layer of account protection by requiring two distinct forms of authentication. Time-Based One-Time Password (TOTP) is one of the most commonly used 2FA methods, generating dynamic 6-digit codes that typically change every 30 seconds. These TOTP codes are used alongside standard user credentials to enable secure access to your AVD environment.<\/p>\n<p>In Azure Virtual Desktop (AVD) environments, TOTP-based authentication is referred to as \u201cOATH software tokens\u201d within Microsoft Entra ID (formerly Azure AD).<\/p>\n<h2><span class=\"ez-toc-section\" id=\"How_to_Configure_TOTP_Authentication_for_AVD_Logon_Simulation\"><\/span>How to Configure TOTP Authentication for AVD Logon Simulation<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>In a few simple steps you can protect your synthetic monitoring systems, simply:<\/p>\n<ul>\n<li>Register your Microsoft AVD logon simulation endpoint as an application in Microsoft Entra ID (formerly Azure AD).<\/li>\n<li>Obtain the secret key from your registered endpoint.<\/li>\n<li>Choose an authenticator app that supports TOTP, such as Microsoft Authenticator, Google Authenticator, etc.<\/li>\n<li>Add your secret key to the authenticator app by manually entering it or scanning the QR code.<\/li>\n<li>TOTP codes generated by your authenticator app can be used to log in to your Microsoft Azure Virtual Desktop (AVD) environment.<\/li>\n<\/ul>\n<h2><span class=\"ez-toc-section\" id=\"TOTP-Based_2FA_Configuration_in_eG_Enterprise\"><\/span>TOTP-Based 2FA Configuration in eG Enterprise<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p><a href=\"https:\/\/www.eginnovations.com\/blog\/wp-content\/uploads\/2025\/07\/AVD-Monitoring-Enhancements-zoom.jpg\" data-rel=\"lightbox-image-0\" data-rl_title=\"\" data-rl_caption=\"\" title=\"\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-37913 size-full\" src=\"https:\/\/www.eginnovations.com\/blog\/wp-content\/uploads\/2025\/07\/AVD-Monitoring-Enhancements.webp\" alt=\"Screenshot of eG Enterprise showing how to configure 2FA for the AVD logon simulator\" width=\"750\" height=\"561\" srcset=\"https:\/\/www.eginnovations.com\/blog\/wp-content\/uploads\/2025\/07\/AVD-Monitoring-Enhancements.webp 750w, https:\/\/www.eginnovations.com\/blog\/wp-content\/uploads\/2025\/07\/AVD-Monitoring-Enhancements-300x224.webp 300w, https:\/\/www.eginnovations.com\/blog\/wp-content\/uploads\/2025\/07\/AVD-Monitoring-Enhancements-310x232.webp 310w, https:\/\/www.eginnovations.com\/blog\/wp-content\/uploads\/2025\/07\/AVD-Monitoring-Enhancements-140x105.webp 140w\" sizes=\"auto, (max-width: 750px) 100vw, 750px\" \/><\/a><\/p>\n<p>During simulation, the Microsoft AVD Logon Simulator automatically generates the TOTP using the shared secret key and the current time. This TOTP is submitted along with the user credentials during the login process. After successful authentication, the simulator reports the total time taken to complete the login process. If authentication fails due to MFA service outages, connectivity issues, time synchronization errors, or other causes, the simulator triggers alarms with supporting screenshots for further analysis.<\/p>\n<p>Using the graphical view of the simulation process shown below, administrators can clearly identify which step in the logon sequence caused failures or slowness. This facilitates the precise isolation of specific failure or delay stages in the simulation\u2014whether during login, enumeration, session establishment, application launch, or logoff.<\/p>\n<p><a href=\"https:\/\/www.eginnovations.com\/blog\/wp-content\/uploads\/2025\/07\/avd-user-experience-view-zoom.jpg\" data-rel=\"lightbox-image-1\" data-rl_title=\"\" data-rl_caption=\"\" title=\"\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-37912 size-full\" src=\"https:\/\/www.eginnovations.com\/blog\/wp-content\/uploads\/2025\/07\/avd-user-experience-view.webp\" alt=\"Screenshot of the results from the eG Enterprise logon simulator for AVD showing logon time breakdowns \" width=\"750\" height=\"419\" srcset=\"https:\/\/www.eginnovations.com\/blog\/wp-content\/uploads\/2025\/07\/avd-user-experience-view.webp 750w, https:\/\/www.eginnovations.com\/blog\/wp-content\/uploads\/2025\/07\/avd-user-experience-view-300x168.webp 300w, https:\/\/www.eginnovations.com\/blog\/wp-content\/uploads\/2025\/07\/avd-user-experience-view-310x173.webp 310w, https:\/\/www.eginnovations.com\/blog\/wp-content\/uploads\/2025\/07\/avd-user-experience-view-140x78.webp 140w\" sizes=\"auto, (max-width: 750px) 100vw, 750px\" \/><\/a><\/p>\n<p><a href=\"https:\/\/www.eginnovations.com\/avd-logon-simulator\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-37909 size-full\" src=\"https:\/\/www.eginnovations.com\/blog\/wp-content\/uploads\/2025\/07\/Free-AVD-Logon-Simulator-banner.jpg\" alt=\"banner to click on to access free AVD logon simulator\" width=\"850\" height=\"180\" srcset=\"https:\/\/www.eginnovations.com\/blog\/wp-content\/uploads\/2025\/07\/Free-AVD-Logon-Simulator-banner.jpg 850w, https:\/\/www.eginnovations.com\/blog\/wp-content\/uploads\/2025\/07\/Free-AVD-Logon-Simulator-banner-300x64.jpg 300w, https:\/\/www.eginnovations.com\/blog\/wp-content\/uploads\/2025\/07\/Free-AVD-Logon-Simulator-banner-768x163.jpg 768w, https:\/\/www.eginnovations.com\/blog\/wp-content\/uploads\/2025\/07\/Free-AVD-Logon-Simulator-banner-800x169.jpg 800w, https:\/\/www.eginnovations.com\/blog\/wp-content\/uploads\/2025\/07\/Free-AVD-Logon-Simulator-banner-310x66.jpg 310w, https:\/\/www.eginnovations.com\/blog\/wp-content\/uploads\/2025\/07\/Free-AVD-Logon-Simulator-banner-140x30.jpg 140w\" sizes=\"auto, (max-width: 850px) 100vw, 850px\" \/><\/a><\/p>\n<p>Learn more about synthetic monitoring for AVD and Azure DaaS, see: <a class=\"link\" href=\"https:\/\/www.eginnovations.com\/blog\/synthetic-monitoring-of-microsoft-avd\/\">Synthetic Monitoring of Microsoft Azure DaaS | eG Innovations<\/a>.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"Benefits_of_MFA_for_Synthetic_Monitoring\"><\/span>Benefits of MFA for Synthetic Monitoring<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Multi-Factor Authentication (MFA) strengthens synthetic monitoring by ensuring that automated logon and user journey tests remain secure while still validating real-world user experience. It prevents synthetic monitoring accounts from becoming weak points in the security chain. <\/p>\n<p style=\"margin-bottom:15px;\">Key benefits include: <\/p>\n<ul>\n<li><strong>Stronger security for monitoring accounts:<\/strong> Ensures synthetic test credentials are protected from unauthorized access.<\/li>\n<li><strong>Accurate real-world testing:<\/strong> Validates actual user logon flows, including MFA steps, as employees experience them.<\/li>\n<li><strong>Improved compliance and governance:<\/strong> Supports security best practices by enforcing MFA across all access paths.<\/li>\n<li><strong>End-to-end AVD visibility:<\/strong> Ensures synthetic monitoring reflects full Azure Virtual Desktop login journeys, including secure authentication steps.<\/li>\n<\/ul>\n<h2><span class=\"ez-toc-section\" id=\"Why_Choose_eG_Enterprise_for_AVD_Synthetic_Monitoring\"><\/span>Why Choose eG Enterprise for AVD Synthetic Monitoring<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>eG Enterprise includes an industry leading comprehensive portfolio of synthetic monitoring tools for AVD. From protocol simulators, a purpose-built logon simulator and a web app simulator to the flagship eG Universal Simulator that can perform full-session simulations of complex user workflows.<\/p>\n<p>The eG Enterprise Universal Simulator extends synthetic monitoring beyond traditional web applications, allowing organizations to proactively test and validate real user workflows across web, desktop, VDI, Citrix, SAP, and other thick- and thin-client applications.<\/p>\n<p>The simple cost-effective licensing model for eG Enterprise\u2019s synthetic monitoring makes it highly competitive. The eG Enterprise Universal Simulator is licensed per playback station (endpoint), not per application, script, or transaction. This allows organizations to monitor unlimited business workflows from a single licensed endpoint, simplifying deployment and reducing synthetic monitoring costs.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"Frequently_Asked_Questions\"><\/span>Frequently Asked Questions<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<table class=\"new_table_style\">\n<tbody>\n<tr>\n<td class=\"q-no\" valign=\"top\">1.<\/td>\n<td class=\"question-title\">What is MFA in Azure Virtual Desktop (AVD)?<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<div class=\"answer-text\">\n<p>MFA (Multi-Factor Authentication) in Azure Virtual Desktop (AVD) is a security layer that requires users to provide a second form of identity verification\u2014such as a mobile app prompt, biometrics, or hardware token\u2014in addition to their username and password when accessing virtual desktops and remote app. You can learn more about enforcing Entra MFA for AVD, here: <a class=\"link\" href=\"https:\/\/learn.microsoft.com\/en-us\/azure\/virtual-desktop\/set-up-mfa?tabs=avd\" target=\"blank\">Enforce Microsoft Entra multifactor authentication for Azure Virtual Desktop using Conditional Access &#8211; Azure &#8211; Azure Virtual Desktop | Microsoft Learn.<\/a><\/p>\n<\/div>\n<table class=\"new_table_style\">\n<tbody>\n<tr>\n<td class=\"q-no\" valign=\"top\">2.<\/td>\n<td class=\"question-title\">Why is MFA important for synthetic monitoring?<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<div class=\"answer-text\">\n<p>Multi-factor authentication (MFA) is important for synthetic monitoring because modern digital workplaces, such as Azure Virtual Desktop (AVD), increasingly require MFA as a standard security control. If synthetic monitoring doesn\u2019t support MFA it will not test the realistic user workflow of using an app or virtual desktop.<\/p>\n<\/div>\n<table class=\"new_table_style\">\n<tbody>\n<tr>\n<td class=\"q-no\" valign=\"top\">3.<\/td>\n<td class=\"question-title\">What is TOTP authentication?<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<div class=\"answer-text\">\n<p>Time-Based One-Time Password (TOTP) authentication is a form of Multi-Factor Authentication (MFA) that generates a temporary, unique code that expires after a short period\u2014typically 30 seconds. Users enter this code, along with their username and password, to verify their identity during login.<\/p>\n<p>TOTP codes are generated by an authentication app such as Microsoft Authenticator or Google Authenticator using a shared secret and the current time. Because the code changes continuously and can only be used once, it provides a stronger layer of security than passwords alone.<\/p>\n<p>TOTP is widely used to secure cloud services, VPNs, and virtual desktop platforms such as Azure Virtual Desktop, helping protect against phishing, credential theft, and unauthorized account access.What is TOTP authentication?<\/p>\n<\/div>\n<table class=\"new_table_style\">\n<tbody>\n<tr>\n<td class=\"q-no\" valign=\"top\">4.<\/td>\n<td class=\"question-title\">How does eG Enterprise support MFA-based synthetic monitoring of AVD?<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<div class=\"answer-text\">\n<p>eG Enterprise supports MFA-based synthetic monitoring of Azure Virtual Desktop (AVD) by enabling synthetic login simulations that can successfully navigate modern authentication workflows, including Microsoft multi-factor authentication (MFA). This allows organizations to continuously test the complete AVD user login experience, not just basic application availability.<\/p>\n<p>Support is enabled via the use of an authenticator app that supports TOTP, such as Microsoft Authenticator, Google Authenticator, etc.<\/p>\n<\/div>\n<table class=\"new_table_style\">\n<tbody>\n<tr>\n<td class=\"q-no\" valign=\"top\">5.<\/td>\n<td class=\"question-title\">What security risks exist without MFA?<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<div class=\"answer-text\">\n<p>Without Multi-Factor Authentication (MFA), user accounts are protected only by passwords, which can be compromised through phishing attacks, credential theft, password spraying, brute-force attacks, malware, and password reuse across multiple services. If an attacker obtains valid credentials, they can often gain immediate access to applications, virtual desktops, cloud services, and sensitive business data without any additional verification.<\/p>\n<p>In Azure Virtual Desktop (AVD) and other remote access environments, the absence of MFA significantly increases the risk of unauthorized access, account takeover, data breaches, ransomware attacks, and lateral movement within the network. MFA adds an additional layer of security by requiring a second form of verification, making it far more difficult for attackers to exploit stolen credentials even if passwords are compromised.<\/p>\n<\/div>\n<table class=\"new_table_style\">\n<tbody>\n<tr>\n<td class=\"q-no\" valign=\"top\">6.<\/td>\n<td class=\"question-title\">Can synthetic monitoring work with Microsoft Entra ID MFA?<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<div class=\"answer-text\">\n<p>Yes, in eG Enterprise you simply need to register the simulation endpoint as an application in Microsoft Entra ID.<\/p>\n<\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>Why MFA is Critical for Synthetic Monitoring &#038; Remote Access Learn how MFA and TOTP-based authentication improve security for synthetic monitoring in Azure Virtual Desktop (AVD) environments. Today, I\u2019ll cover some of the basics of monitoring Multi-Factor Authentication and why ensuring MFA is implemented is essential, particularly in environments where remote access is possible. I\u2019ll [&hellip;]<\/p>\n","protected":false},"author":94,"featured_media":38042,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"inline_featured_image":false,"_lmt_disableupdate":"no","_lmt_disable":"","footnotes":""},"categories":[404],"tags":[2360,421,2250,2065,2359,347,1924,2361],"class_list":["post-37900","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-azure-monitoring","tag-authentication","tag-avd","tag-entra-id","tag-logon-simulator","tag-mfa","tag-synthetic-monitoring","tag-synthetic-transaction-monitoring","tag-totp"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v24.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Multi Factor Authentication for Synthetic Monitoring for AVD | eG Innovations<\/title>\n<meta name=\"description\" content=\"When using synthetic monitoring and authentication technologies Multi Factor Authentication (MFA) is essential for a robust security.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.eginnovations.com\/blog\/multi-factor-authentication-for-synthetic-monitoring-for-avd\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Multi Factor Authentication for Synthetic Monitoring for AVD | eG Innovations\" \/>\n<meta property=\"og:description\" content=\"When using synthetic monitoring for AVD and authentication technologies such as Entra ID, ensuring your organization uses Multi Factor Authentication (MFA) is essential for a robust security posture. Learn more.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.eginnovations.com\/blog\/multi-factor-authentication-for-synthetic-monitoring-for-avd\/\" \/>\n<meta property=\"og:site_name\" content=\"eG Innovations\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/eGInnovations\" \/>\n<meta property=\"article:published_time\" content=\"2025-07-29T10:10:56+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2026-06-11T09:11:48+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.eginnovations.com\/blog\/wp-content\/uploads\/2025\/07\/MFA-social-banner.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"628\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"SatheeshKumar S\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@eginnovations\" \/>\n<meta name=\"twitter:site\" content=\"@eginnovations\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"SatheeshKumar S\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"9 minutes\" \/>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Multi Factor Authentication for Synthetic Monitoring for AVD | eG Innovations","description":"When using synthetic monitoring and authentication technologies Multi Factor Authentication (MFA) is essential for a robust security.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.eginnovations.com\/blog\/multi-factor-authentication-for-synthetic-monitoring-for-avd\/","og_locale":"en_US","og_type":"article","og_title":"Multi Factor Authentication for Synthetic Monitoring for AVD | eG Innovations","og_description":"When using synthetic monitoring for AVD and authentication technologies such as Entra ID, ensuring your organization uses Multi Factor Authentication (MFA) is essential for a robust security posture. Learn more.","og_url":"https:\/\/www.eginnovations.com\/blog\/multi-factor-authentication-for-synthetic-monitoring-for-avd\/","og_site_name":"eG Innovations","article_publisher":"https:\/\/www.facebook.com\/eGInnovations","article_published_time":"2025-07-29T10:10:56+00:00","article_modified_time":"2026-06-11T09:11:48+00:00","og_image":[{"width":1200,"height":628,"url":"https:\/\/www.eginnovations.com\/blog\/wp-content\/uploads\/2025\/07\/MFA-social-banner.jpg","type":"image\/jpeg"}],"author":"SatheeshKumar S","twitter_card":"summary_large_image","twitter_creator":"@eginnovations","twitter_site":"@eginnovations","twitter_misc":{"Written by":"SatheeshKumar S","Est. reading time":"9 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.eginnovations.com\/blog\/multi-factor-authentication-for-synthetic-monitoring-for-avd\/#article","isPartOf":{"@id":"https:\/\/www.eginnovations.com\/blog\/multi-factor-authentication-for-synthetic-monitoring-for-avd\/"},"author":{"name":"SatheeshKumar S","@id":"https:\/\/www.eginnovations.com\/blog\/#\/schema\/person\/5b88dcafe4c9092ca40187f2cedee05d"},"headline":"MFA for Synthetic Monitoring in Azure Virtual Desktop (AVD) Environments","datePublished":"2025-07-29T10:10:56+00:00","dateModified":"2026-06-11T09:11:48+00:00","mainEntityOfPage":{"@id":"https:\/\/www.eginnovations.com\/blog\/multi-factor-authentication-for-synthetic-monitoring-for-avd\/"},"wordCount":2165,"publisher":{"@id":"https:\/\/www.eginnovations.com\/blog\/#organization"},"image":{"@id":"https:\/\/www.eginnovations.com\/blog\/multi-factor-authentication-for-synthetic-monitoring-for-avd\/#primaryimage"},"thumbnailUrl":"https:\/\/www.eginnovations.com\/blog\/wp-content\/uploads\/2025\/07\/MFA-Thumbnail-banner.jpg","keywords":["Authentication","AVD","Entra ID","Logon Simulator","MFA","synthetic monitoring","Synthetic transaction monitoring","TOTP"],"articleSection":["Azure Monitoring"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.eginnovations.com\/blog\/multi-factor-authentication-for-synthetic-monitoring-for-avd\/","url":"https:\/\/www.eginnovations.com\/blog\/multi-factor-authentication-for-synthetic-monitoring-for-avd\/","name":"Multi Factor Authentication for Synthetic Monitoring for AVD | eG Innovations","isPartOf":{"@id":"https:\/\/www.eginnovations.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.eginnovations.com\/blog\/multi-factor-authentication-for-synthetic-monitoring-for-avd\/#primaryimage"},"image":{"@id":"https:\/\/www.eginnovations.com\/blog\/multi-factor-authentication-for-synthetic-monitoring-for-avd\/#primaryimage"},"thumbnailUrl":"https:\/\/www.eginnovations.com\/blog\/wp-content\/uploads\/2025\/07\/MFA-Thumbnail-banner.jpg","datePublished":"2025-07-29T10:10:56+00:00","dateModified":"2026-06-11T09:11:48+00:00","description":"When using synthetic monitoring and authentication technologies Multi Factor Authentication (MFA) is essential for a robust security.","breadcrumb":{"@id":"https:\/\/www.eginnovations.com\/blog\/multi-factor-authentication-for-synthetic-monitoring-for-avd\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.eginnovations.com\/blog\/multi-factor-authentication-for-synthetic-monitoring-for-avd\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.eginnovations.com\/blog\/multi-factor-authentication-for-synthetic-monitoring-for-avd\/#primaryimage","url":"https:\/\/www.eginnovations.com\/blog\/wp-content\/uploads\/2025\/07\/MFA-Thumbnail-banner.jpg","contentUrl":"https:\/\/www.eginnovations.com\/blog\/wp-content\/uploads\/2025\/07\/MFA-Thumbnail-banner.jpg","width":362,"height":235},{"@type":"BreadcrumbList","@id":"https:\/\/www.eginnovations.com\/blog\/multi-factor-authentication-for-synthetic-monitoring-for-avd\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.eginnovations.com\/blog\/"},{"@type":"ListItem","position":2,"name":"MFA for Synthetic Monitoring in Azure Virtual Desktop (AVD) Environments"}]},{"@type":"WebSite","@id":"https:\/\/www.eginnovations.com\/blog\/#website","url":"https:\/\/www.eginnovations.com\/blog\/","name":"eG Innovations","description":"IT Performance Monitoring Insights","publisher":{"@id":"https:\/\/www.eginnovations.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.eginnovations.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.eginnovations.com\/blog\/#organization","name":"eG Innovations","alternateName":"eg innovations","url":"https:\/\/www.eginnovations.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.eginnovations.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.eginnovations.com\/blog\/wp-content\/uploads\/2014\/07\/eg-logo-dark-gray1_new.jpg","contentUrl":"https:\/\/www.eginnovations.com\/blog\/wp-content\/uploads\/2014\/07\/eg-logo-dark-gray1_new.jpg","width":362,"height":235,"caption":"eG Innovations"},"image":{"@id":"https:\/\/www.eginnovations.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/eGInnovations","https:\/\/x.com\/eginnovations"]},{"@type":"Person","@id":"https:\/\/www.eginnovations.com\/blog\/#\/schema\/person\/5b88dcafe4c9092ca40187f2cedee05d","name":"SatheeshKumar S","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.eginnovations.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/5e265101bc723500f101df6b1c57f8b0?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/5e265101bc723500f101df6b1c57f8b0?s=96&d=mm&r=g","caption":"SatheeshKumar S"},"url":"https:\/\/www.eginnovations.com\/blog\/author\/satheeshkumar-s\/"}]}},"modified_by":"eG Innovations","_links":{"self":[{"href":"https:\/\/www.eginnovations.com\/blog\/wp-json\/wp\/v2\/posts\/37900","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.eginnovations.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.eginnovations.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.eginnovations.com\/blog\/wp-json\/wp\/v2\/users\/94"}],"replies":[{"embeddable":true,"href":"https:\/\/www.eginnovations.com\/blog\/wp-json\/wp\/v2\/comments?post=37900"}],"version-history":[{"count":4,"href":"https:\/\/www.eginnovations.com\/blog\/wp-json\/wp\/v2\/posts\/37900\/revisions"}],"predecessor-version":[{"id":39498,"href":"https:\/\/www.eginnovations.com\/blog\/wp-json\/wp\/v2\/posts\/37900\/revisions\/39498"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.eginnovations.com\/blog\/wp-json\/wp\/v2\/media\/38042"}],"wp:attachment":[{"href":"https:\/\/www.eginnovations.com\/blog\/wp-json\/wp\/v2\/media?parent=37900"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.eginnovations.com\/blog\/wp-json\/wp\/v2\/categories?post=37900"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.eginnovations.com\/blog\/wp-json\/wp\/v2\/tags?post=37900"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}