MFA via CA / Admin Protal

tschmidt86 · 2022-09-19T12:50:14.000Z

Why is it that when you enforce MFA via conditional access in azure that it does not update in the admin portal under MFA. It just shows all users disabled when it is clearly enforced and working. Is this a Microsoft portal problem?

gopal-bdrsuite · 2022-09-19T14:25:17.000Z

No it is not the problem. Both are looks same, and offers basic MFA. What you can see in MFA in admin portal is a basic MFA, it is just like a Azure / Office 365 MFA applicable for your Office application services only, whereas the Conditional Access policy is the broadly classified MFA solution, which can be expanded to any third party solution that offers SaaS model

Registration into MFA is handled by either enabling MFA (Free) for the user, or making the user subject to a conditional access policy requirement. Also Azure Conditional Access will not change the state in Azure MFA, it will still show as disabled for the user.

bbigford · 2022-09-19T15:05:33.000Z

TSchmidt86:

It just shows all users disabled when it is clearly enforced and working

It appears you’re talking about the per-user MFA portal, located at https://account.activedirectory.windowsazure.com/

They are not one in the same. Also, it’s not recommended to use per-user MFA anymore, it’s recommended to strictly use Conditional Access for MFA.