 Lee asks, if you've enabled security defaults on 365 and all accounts have set up two factor authentication, is there a way to disable 2FA or MFA on one account? I've checked the older style multi-factor under active users in 365 admin, and this particular user account as it is disabled, but yet it's still asked for MFA to be configured. The issue is that an app is having issues sending mail due to the MFA configuration. So the first thing is that he talks about default security for 365, that's a moving target, right? So I'm not sure what it was when this particular question or when he had the problem, but it may have gone up 180 since then because they keep on changing stuff. And what they've done is they've actually come across and said, hey, you have to have your users enable MFA, but it's only a suggestion, it's not a requirement, all right? So you can enable MFA across your entire org, you can enable it for a subset of users, a group, you don't have to enable it for everyone. And it depends on how granular you get with it. They've taken the old portal the way it was, is that it was really kind of convoluted to how you set up MFA. Now they've actually got it separated into the security portal and it's much easier. So yes, you can have a single account, especially one that runs like a service account, if you wanna call it that, like a service principle. Definitely, there are ways around the MFA, but if your app can't run, then definitely take the MFA off. Absolutely, because you gotta have your app run, right? So go in and what I recall, I'm not looking at it, but what I recall, it's basically going through the users and then going to the security console and then just unchecking MFA requirement. That's all it really is. So I'm not sure what they are looking at, if they were looking at the old way of doing it, since this question is a little bit older, or the new way of doing it. So it's not that difficult and yes, it can be done. You can also do it via PowerShell. So you can do MFA, add, removes, change policies, do all that kind of stuff via PowerShell as well. Yeah, I actually had this experience where we've talked about it in past segments where there was a security breach because of the one account where it was turned off for a reason, but that caused problems. One other comment too, I think part of it is as an admin, you're gonna get alerts or there'll be a report there of accounts that don't have MFA turned on, so you'll see that. But to your point, it's still an option to do that. But the other side of that is having two-factor authentication is becoming pretty much a standard and for an app to not, or to have problems to struggle with that, it could be an outdated app or something that might be another third-party solution, something, another option that gives you that functionality that can support multi-factor. Yeah, this goes back to, if you talk about that, this goes back to like, remember the old days where we had applications that would only take user IDs that were eight characters long and you couldn't have anything over nine characters and then all of a sudden Microsoft comes out with something saying, hey, your user IDs have to be user at whatever.com or .local and that just messed up everything with those apps. So users had to remember two IDs. Well, it's kind of the same thing, right? Because when you take a look at this, it's whether or not your app can adapt to the progression. Yeah, app can adapt. Yeah, Christian, I see it. React, adapt. React, adapt, yeah, kind of like, we do a schoolhouse rocks with that. That's right. The app, react, yeah, no, no. But when you think about it, it's like, maybe the app's just too old. Maybe there are ways around it from a programming perspective, you know, having the MFA pop up and creating a token, creating the, what do they call that? The user app, user application, I can't remember, but you basically get a token, you can create a user application. So there are a couple of different ways to do it. Well, I think for the basic questions though, yeah, turn it off. Yeah. Yeah, I personally hate it because I have 16 different accounts and I'm logging in and logging out all day long. Wish evil people would just leave my stuff alone and stop. Like, don't look here, nothing to see here. But yeah, it's all turned on. And I have, God forbid you'll lose your phone or don't have your phone, right? Ridiculous. Yep. I put a link in the worksheet for the setup for MFA. What it currently is as of today. But of course, to Mike's point, that could be different tomorrow because it is Tuesday tomorrow. It's Tuesday.