Saturday, February 4, 2023

Users Prompted for MFA even when disabled in Office 365

This has happened a few times now, whereby even though the MFA is disabled on the user accounts, the system still insists that it wants the user to set it up and use it. Why is this happening? You would think that be turning it off for each user would fix the problem. The fix is actually surprisingly simple and involves a simple toggle button. Here is where to find it…..

Firstly, the screen below shows that all users in my ‘test’ domain, talisoft.com, do in fact have their MFA disabled.

The problem is because the new tenant has had the ‘Default Security’ enabled which enforces MFA in the backend despite the settings for individual users. To turn this off and allow you to have a more granular approach firstly navigate to

https://portal.azure.com

This will take you to the main Azure page for your tenant, whereby you need to select the ‘Azure Active Directory’ item as shown below.

Next, select the ‘Properties’ option, also as shown below.

The Properties page will then confirm what we were thinking, as by selecting the ‘Manage Security Defaults’ link at the bottom…….

You will see that the you have the option to turn off the security defaults. Make the change and hit Save.


Once you do this, it will take a few minutes to fully take effect. But you will find that all the granular MFA options that you place on the users will now work correct.

Thank you reading, please remember to subscribe to the YouTube channel for more content.

https://www.youtube.com/user/dangermouse2709/videos

Mark Rochester
Mark Rochesterhttps://thecloudgeezer.com
Mark currently works in the cloud space assisting large companies to migrate from either on premises to the cloud, or cloud to cloud. His experience with Enterprise migrations spans more than 25 years which basically makes him old. However, with all the oldness creeping up he still finds technology massively exciting. Please reach out for a chat anytime you would like. :-)

Related Articles

Migrate Microsoft Teams using MigrationWiz

As there is no native way to migrate the content from Tenant to Tenant for Microsoft Teams we need to use a paid toolset...

Migrate Microsoft 365 Tenant to Tenant with Free Native Tools

An interesting topic again, debating whether the free native tools that are available to migrate the Exchange Online workload in Microsoft 365 are good...

Create ‘Dummy Test’ Users in Local Active Directory

The need for this comes along when you are testing things like Azure AD Connect Sync, or an AD to AD migration. Maybe an...

Stay Connected

82FansLike
37,255FollowersFollow
685SubscribersSubscribe
- Advertisement -

Latest Articles