Slow login once MFA fulfilled

JJ-Admin 0 Reputation points
2023-05-17T11:48:38.15+00:00

Hi Team,

We have a user who has slow login times once MFA has been fulfilled. This happens on any network, home or office.

Once the user fulfills mfa, it just loads for 2 minutes before logging the user in.

User's image

This only happens on his Windows device (we haven't tested on another device).

Any idea how to troubleshoot this?

Thanks,

Jimmy

Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
14,748 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. James Hamil 14,346 Reputation points Microsoft Employee
    2023-05-17T19:32:17.3933333+00:00

    Hi @JJ-Admin , there are a few steps you can take to see what the issue is here:

    1. Check the PRT status: Open a Command Prompt window in the context of the logged-in user and run dsregcmd /status. The "SSO state" section provides the current Primary Refresh Token (PRT) status.
    2. Find the error code: Check the "Attempt Status" field under the "AzureAdPrt" field in the dsregcmd output for any error codes or issues.
    3. Review sign-in logs: Examine the Azure AD sign-in logs for any authentication-related issues or delays. You can access these logs in the Azure portal under Azure Active Directory > Monitoring > Sign-ins.
    4. Check device performance: Analyze the Windows device's performance, including CPU, memory, and disk usage, to identify any bottlenecks that could be causing the slow login times.
    5. Examine event logs: Review the Windows Event Viewer logs for any errors or warnings related to the slow login issue. Focus on the Application, Security, and System logs.
    6. Test with another device: If possible, test the user's login process on another device to determine if the issue is specific to their current Windows device.
    7. Update software: Ensure that the user's Windows device and any related software (e.g., Azure AD Connect, Azure AD PowerShell) are up-to-date with the latest patches and updates.

    Also maybe clearing the cache and cookies. Let me know if any of this helps. If not we can open a free support ticket for you.

    If this answer helps you please mark "Accept Answer" so other users can reference it.

    Thank you,

    James