Receiving a 'Something went wrong, please try again later' error when trying to create a basic Conditional Access Policy for Global Admins MFA

Mr J Quinn 0 Reputation points
2023-02-28T08:29:27.1833333+00:00

I am trying to create a very basic Conditional Access Policy that simply enforces MFA requirement for admin roles, as per this article:

https://learn.microsoft.com/en-us/azure/active-directory/conditional-access/howto-conditional-access-policy-admin-mfa

When I click to create the policy, I am persistently getting an error: 'Something went wrong, please try again later'.

Unfortunately, 'later' doesn't help (this has been 6 months).

We are only basic A1 subscription but I am led to understand that enforcing MFa for admins is supposed to be possible and included in this?

Any help or pointers would be greatly appreciated!

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,311 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Andy David - MVP 140.8K Reputation points MVP
    2023-02-28T12:43:13.1433333+00:00

    Hi, my understanding is that you need a P1 at min to enable a CA policy. If that is not possible then you can use security defaults that apply to everyone (recommended)

    https://learn.microsoft.com/en-us/azure/active-directory/conditional-access/overview#license-requirements

    0 comments No comments