25,148 questions
Why is user being asked to for 2FA every time they log in/unlock?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 57.00000000000001%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJS%3C/text%3E%3C/svg%3E)
Jennifer Storkamp
0
Reputation points
I have a user that is on a domain joined workstation, azure ad profile. And every time they sign-in or unlock their profile they are given a prompt for 2FA (DUO push if it matters). No one else has this issue, and it's been this way since they got their new laptop (almost 3 months ago).
I've removed their O365 account, reviewed event logs, checked Conditional Access policy, and scrubbed Cred. Manager. DUO logs point to Microsoft RDP continually asking for the 2FA, Entra says it's a mix of 'My Signins and Microsoft Account Controls V2'. This doesn't happen with any of the apps and no other users are experiencing this.
I've tried a lot but nothing short of putting the user in Bypass will let them skip having to do 2FA at every login. Any thoughts?
Microsoft Security | Microsoft Entra | Microsoft Entra ID
{count} votes
-
Akshay-MSFT 17,956 Reputation points Microsoft Employee Moderator2023-09-25T11:20:02.33+00:00 Thank you for postings your query on Microsoft Q&A, from above description I could understand one of your end user is getting 2FA prompt, however I am not sure I understand what actions are being followed to get the prompt.
I would request you to confirm step by step what actions is done by end user to get the 2FA prompt.
Thanks,
Akshay Kaushik
Sign in to comment
Sign in to answer