Hi @Gert Baauw
Thank you for reaching out to the community.
This can happen if there CA policies being applied the sync service account.
Can you check if your CA policies are triggering MFA for the service account and then exclude the service account from the policies?
Please don’t forget to "Accept the answer" and “up-vote” wherever the information provided helps you, this can be beneficial to other community members.