This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(236.8, 93%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC%3C/text%3E%3C/svg%3E)
I am trying to investigate why certain users in our org get way more MFA requests than others. One common theme I've noticed is a lot of these MFA prompts show up in the sign-in logs under the resource "Password Breach Authenticator" with resource ID "bdd48c81-3a58-4ea9-849c-ebea7f6b6360".
I could not find any information online on what this resource is. If anyone could provide some info I would greatly appreciate it.
For context, we are still using the per-user MFA option. We are moving to handling all MFA through conditional access but the process is still a few weeks away from completing.
Its a first party Microsoft app:
Im guessing its the same logic Azure uses for iden protection and because you arent using a CA policy it responding with MFA prompts. I would recommend those user reset their passwords and think about moving to a passwordless MFA auth scheme as well
https://learn.microsoft.com/en-us/entra/id-protection/overview-identity-protection
Okay, interesting. Thank you for the response! Based on the name that is kind of what I suspected. I agree with you that that is probably what's happening, but I wish there was a way to confirm. There's little to no visibility on this resource that I can see. It's just a little weird something like that could trigger an MFA prompt every other day for people with not so much as a little blurb about it somewhere.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Hi CodyR
Just checking in to see if above information was helpful. If the reply is helpful to you, please try to mark it as an answer to help others who encounter the same issue and read this thread. If you have any further updates on this issue, please feel free to post back.