Is it possible to set up MFA, but disable password? To give access with just the e-mail and a security code sent to the email?
I'm completely new to Pages - but have some experience with the power platform. I'm trying to create a single point of entry for our clients/customers/users/suppliers to access some very specific core information, stored in Dataverse, solely for this purpose.
We have some individuals with accounts in a Dynamics CE environment, some with accounts on our website, some with e-mail registered in a proprietary system, without login ability.
To avoid having to create duplicate logins or maintaining identities across several providers, I'm trying to come up with a way where we can ensure e-mail ownership, but avoid maintaining passwords distributed.
My idea was to pre-create and sync accounts from all platforms and then only use the e-mail and a security code as the access token. I also need the option for individuals to create an account on this platform, without already existing in the other systems.
(Basically a ticket system, for known and unknown relations, some with existing logins, some with just known e-mails, some without anything.)
I don't know if this is a bad idea, security wise? Or if there are any other ways to solve this? I don't know much about identity providers and how these things are normally handled. And if there are any best practices and build-in functionality, that supports my case.
Other ideas or suggestions are welcomed.
