Share via

Configure Azure AD MFA as secondary authentication

IDN Dev 21 Reputation points
2020-09-25T07:19:09.02+00:00

Can Azure MFA act as a secondary authentication provider for third party application where primary authentication will be handled from the application itself? Can it be configured to behave similar to Duo Security, Okta and RSA SecureID for providing MFA capability only. Here is a sample scenario 1. user logs in to my application with username/password 2. my application sends Azure MFA a request for MFA with user's email. 3. user performs MFA based on the Azure configuration 4. my application verifies the response and grant access to the given user.

Microsoft Security | Microsoft Entra | Microsoft Entra ID
0 comments
Accepted answer
  1. AmanpreetSingh-MSFT 56,871 Reputation points Moderator
    2020-09-25T08:23:35.493+00:00

    Hello @IDN Dev

    As of now, you can use Azure AD MFA for secondary authentication only with web applications which are federated with ADFS. In that case, ADFS can do the 1st factor authentication with on-premises Active Directory and for 2nd Factor authentication, requests can be forwarded to Azure AD MFA service. For step by step instructions on how to configure ADFS to use Azure MFA for 2nd factor authentication, you can refer to this document: https://learn.microsoft.com/en-us/windows-server/identity/ad-fs/operations/configure-ad-fs-and-azure-mfa

    -----------------------------------------------------------------------------------------------------------

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    0 comments

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.