Migrate from MFA Server to Azure AD Multi-Factor Authentication

Dennis Japson 20 Reputation points
2023-09-11T17:44:58.0933333+00:00

Migrate from MFA Server to Azure AD Multi-Factor Authentication

Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,249 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
21,413 questions
0 comments No comments
{count} votes

Accepted answer
  1. Dillon Silzer 57,311 Reputation points
    2023-09-11T17:57:26.7166667+00:00

    Hi Dennis,

    If you are looking for a guide please see below:

    Migrate from MFA Server to Azure AD Multi-Factor Authentication

    https://learn.microsoft.com/en-us/azure/active-directory/authentication/how-to-migrate-mfa-server-to-azure-mfa

    Prerequisites

    • AD FS environment (required if you aren't migrating all your apps to Azure AD prior to migrating MFA Server)
      • Upgrade to AD FS for Windows Server 2019, Farm behavior level (FBL) 4. This upgrade enables you to select authentication provider based on group membership for a more seamless user transition. While it's possible to migrate while on AD FS for Windows Server 2016 FBL 3, it isn't as seamless for users. During the migration, users are prompted to select an authentication provider (MFA Server or Azure AD Multi-Factor Authentication) until the migration is complete.
    • Permissions
      • Enterprise administrator role in Active Directory to configure AD FS farm for Azure AD Multi-Factor Authentication
        • Global administrator role in Azure AD to perform configuration of Azure AD using Azure AD PowerShell

    If this is helpful please accept answer.

    0 comments No comments

0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.