MFA administration

Nicollas Viggiano | Stone 1 Reputation point
2022-11-30T11:38:41.113+00:00

How can i configure my azure to request a 2FA when the user try to configure a second MFA device?

Today when the user try to configure a second device for MFA, it allow him to configure without any confirmation, i want to force the user to insert the code of the first MFA that he have configured.

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,482 questions
0 comments No comments
{count} votes

2 answers

Sort by: Most helpful
  1. Dillon Silzer 56,041 Reputation points
    2022-11-30T14:07:42.597+00:00

    Hi @Nicollas Viggiano | Stone

    1) "i want to force the user to insert the code of the first MFA that he have configured."

    The code is always randomly generated and will never be the same. This is not possible.

    2) "Today when the user try to configure a second device for MFA, it allow him to configure without any confirmation"

    What confirmation are you looking for? Are you talking about the modern authentication window?

    265719-image.png

    Please provide us whether you are using per-user MFA or a Conditional Access Policy.

    Please provide us how you have configured your MFA.


    If this is helpful please accept answer.

    0 comments No comments

  2. Nicollas Viggiano | Stone 1 Reputation point
    2022-12-01T12:02:05.837+00:00

    Hi @Dillon Silzer

    In case 1, its not the first code that i want, its an additional security request (an email, the code of the microsoft authenticator that is configured, or anything else) in the page bellow, when i click to add a new device for MFA, it configure without any confirmation. The URL is "https://mysignins.microsoft.com/security-info"
    266183-mfa1.jpg

    0 comments No comments