Combined Registration for MFA and SSPR

Question

Hi there,

On the 30th September, Microsoft are enforcing combined registration for MFA and SSPR (Self Service Password Reset).
All our users have MFA enabled on their accounts which is managed via Conditional Access, however the majority of users only have 1 x verification method setup under their account.
Our Azure SSPR policy (which is not enabled for most users yet) requires 2 x verification methods to register.

We are wanting to know whether this change on the 30th September to enable Combined Registration will have any impact on existing users. eg: if they only have 1 x method enrolled, will the combined registration prompt them to register another method?
I understand that if we enable SSPR for users, this would prompt them for another method at next logon, however we are just concerned about the existing users at this stage in case they get prompts on the 30th September without having SSPR enabled for them.

Thanks,

Answer 1

@Mike Allan

This will not have any impact on the users who has already registered for MFA. Combined registration is for the MFA and SSPR. Users has already enabled for MFA. For SSPR they will have to manually register in security info page.

Users will have to register for MFA authentication methods which Admin has enabled under Azure active directory >> Password reset >> authentication methods.

Enabling combined registration will not impact any MFA enabled users.

Let me know if you have any further questions.

Please "Accept the answer" if the information helped you. This will help us and others in the community as well.