In MFA security info page, delete button to be disabled for Users.

Madhusoodhan Gopal 55 Reputation points
2023-05-23T12:54:06.6833333+00:00

MFA.PNGHere, a normal user is able to simply delete methods for authentication. So, delete button to be not present inside https://aka.ms/mfasetup for users. How to disable it?

Microsoft Authenticator
Microsoft Authenticator
A Microsoft app for iOS and Android devices that enables authentication with two-factor verification, phone sign-in, and code generation.
6,070 questions
Azure Role-based access control
Azure Role-based access control
An Azure service that provides fine-grained access management for Azure resources, enabling you to grant users only the rights they need to perform their jobs.
715 questions
Microsoft Intune Security
Microsoft Intune Security
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
374 questions
Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
4,715 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,518 questions
0 comments No comments
{count} votes

Accepted answer
  1. Andy David - MVP 145K Reputation points MVP
    2023-05-23T13:27:08.43+00:00

    Hi, there's no option to prevent deleting a method, the only option is the ability to block specific methods from being used. MFA will still enforced regardless so if they delete one accidently, an admin can reset their MFA auth so they can re-add the method.

    0 comments No comments

1 additional answer

Sort by: Most helpful
  1. Andy David - MVP 145K Reputation points MVP
    2023-05-23T13:10:41.55+00:00

    Why the need to disable it? Dont you want users to have the ability to manage their own MFA methods?

    I dont think you can disable it regardless.