AAD Sync user requiries MFA?

Kent Söderlund 21 Reputation points
2023-09-03T10:01:55.4433333+00:00

Hello!

Im struggling with Azure AD sync. I get in the log that the user that AD sync creates cant login, and when I inspect the login log for that user the system requires MFA :(

I have not enabled MFA for all users and the user has MFA deactivated. But if I understand correctly the "Require MFA for all users - Basic" is default. Where do I disable that for this user?

Windows for business | Windows Client for IT Pros | Directory services | Active Directory
Microsoft Security | Microsoft Entra | Microsoft Entra ID
{count} votes

2 answers

Sort by: Most helpful
  1. Kent Söderlund 21 Reputation points
    2023-09-03T10:14:25.36+00:00

    SOLVED (by myself and Google - thnks [Kerry Chen MSFT](https://answers.microsoft.com/en-us/profile/cc1cc42d-9cd3-41ba-8d9f-7449178facfe"Kerry Chen MSFT") :)) :

    Go to AAD > Security > Conditional Access > Policy Snapshot > View all policies

    Switch off "Require MFA for all users - Basic"

    Install AD sync

    Switch On Require "MFA for all users - Basic" again

    0 comments No comments

  2. Givary-MSFT 35,626 Reputation points Microsoft Employee Moderator
    2023-09-05T14:49:10.81+00:00

    @Kent Söderlund I'm glad that you were able to resolve your issue and thank you for posting your solution so that others experiencing the same thing can easily reference this! Since the Microsoft Q&A community has a policy that "The question author cannot accept their own answer. They can only accept answers by others ", I'll repost your solution in case you'd like to "Accept " the answer.

    Issue: User's image

    Resolution: Resolved by @Kent Söderlund

    User's image

    If you have any other questions or are still running into more issues, please let me know.
    Thank you again for your time and patience throughout this issue.

    Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.