MFA in newly migrated tenancy in relation to D365 sign-in

Chen 0 Reputation points

We are planning to migrate our domain to a new one. Currently users from our old tenant are using MFA to sign in in our D365. With this having been said, is the scenario below possible?

Disconnect the current authentication between (OLD AAD – D365) and establish connection between (NEW AAD – D365) - With this all OLD AAD users will authenticate to D365 only from NEW AAD?

Thank you.


Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
18,719 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. M 76 Reputation points

    Hi Chen,

    You're moving to a new domain. So all users will receive a new e-mail/username? You can leave the Microsoft authenticator on the old domain and add the new domain. In your transition users can access both. In reality you are migrating users and they will have new domain, the old users still exist during the migration. Once the new user is set up in the new domain set up MFA.

    Unless I am missing some details here, this should not be an issue. I've recently done the same. We kept our old MFA enabled and enabled MFA with the Microsoft Authenticator for the new domain.



    0 comments No comments