A pop-up survey could appear while you're here --curious what it's for? Click here to learn more!

×
Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions
Community
Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning Events Champions
Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning Events Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Forced Windows/365 MFA process?

steverar
steverar
June 17, 2026

Went to login with my Widows/365 email address. It went thru the Windows/365 MFA setup/signin process.

Is this a man-in-the-middle hack?

I found out we'd need Guard to check audit logs.

Answer
Watch
Like Be the first to like this
60 views

1 answer

0 votes
Tomislav Tobijas
Tomislav Tobijas
Community Champion
June 17, 2026

Hi @steverar ,

I'm not sure if I get what the question here actually is 🤔

I mean, Bitbucket supports SSO with third-party providers such as Microsoft. You're expected to be redirected to the Microsoft login and MFA process to verify your identity.

There should be a general audit here Workspace Settings > Security > Audit Log, but for more comprehensive one (mainly related to user management) would be the one that comes with Guard.

Cheers,
Tobi

View More Comments
steverar
steverar
June 17, 2026

The problem is that it just did it immediately after I logged in. It looks like I need Guard to get better activity tracking.

Like
Ed Letifov _TechTime - New Zealand_
Ed Letifov _TechTime - New Zealand_
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Champions.
Get recognized
June 17, 2026

@steverar you make it sound as if you entered you email AND password into Atlassian's native dialog pressed submit – and then got redirected to EntraID (to basically enter both again)? Was this really the case?

Like
Reply

Suggest an answer

Log in or Sign up to answer
Bitbucket
Bitbucket
DEPLOYMENT TYPE
CLOUD
PERMISSIONS LEVEL
Product Admin
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2026 Atlassian
    Privacy Policy Notice at Collection Terms Security