Receiving a 'Something went wrong, please try again later' error when trying to create a basic Conditional Access Policy for Global Admins MFA

Mr J Quinn 0 Reputation points
2023-02-28T08:29:27.1833333+00:00

I am trying to create a very basic Conditional Access Policy that simply enforces MFA requirement for admin roles, as per this article:

https://learn.microsoft.com/en-us/azure/active-directory/conditional-access/howto-conditional-access-policy-admin-mfa

When I click to create the policy, I am persistently getting an error: 'Something went wrong, please try again later'.

Unfortunately, 'later' doesn't help (this has been 6 months).

We are only basic A1 subscription but I am led to understand that enforcing MFa for admins is supposed to be possible and included in this?

Any help or pointers would be greatly appreciated!

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
13,565 questions

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Andy David - MVP 115.3K Reputation points MVP
    2023-02-28T12:43:13.1433333+00:00

    Hi, my understanding is that you need a P1 at min to enable a CA policy. If that is not possible then you can use security defaults that apply to everyone (recommended)

    https://learn.microsoft.com/en-us/azure/active-directory/conditional-access/overview#license-requirements