AAD Sync user requiries MFA?

Question

Hello!

Im struggling with Azure AD sync. I get in the log that the user that AD sync creates cant login, and when I inspect the login log for that user the system requires MFA :(

I have not enabled MFA for all users and the user has MFA deactivated. But if I understand correctly the "Require MFA for all users - Basic" is default. Where do I disable that for this user?

Answer 1

SOLVED (by myself and Google - thnks [Kerry Chen MSFT](https://answers.microsoft.com/en-us/profile/cc1cc42d-9cd3-41ba-8d9f-7449178facfe"Kerry Chen MSFT") :)) :

Go to AAD > Security > Conditional Access > Policy Snapshot > View all policies

Switch off "Require MFA for all users - Basic"

Install AD sync

Switch On Require "MFA for all users - Basic" again

Answer 2

@Kent Söderlund I'm glad that you were able to resolve your issue and thank you for posting your solution so that others experiencing the same thing can easily reference this! Since the Microsoft Q&A community has a policy that "The question author cannot accept their own answer. They can only accept answers by others ", I'll repost your solution in case you'd like to "Accept " the answer.

Issue:

Resolution: Resolved by @Kent Söderlund

If you have any other questions or are still running into more issues, please let me know.
Thank you again for your time and patience throughout this issue.

Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.